CVE-2026-23154

CWE-2378 documents8 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 96.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Linux LinuxLinux Linux Kernel
Timeline
PublishedFeb 14

Description

In the Linux kernel, the following vulnerability has been resolved: net: fix segmentation of forwarding fraglist GRO This patch enhances GSO segment handling by properly checking the SKB_GSO_DODGY flag for frag_list GSO packets, addressing low throughput issues observed when a station accesses IPv4 servers via hotspots with an IPv6-only upstream interface. Specifically, it fixes a bug in GSO segmentation when forwarding GRO packets containing a frag_list. The function skb_segment_list cannot

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

NVDlinux/linux_kernel5.66.12.69+2
CVEListV5linux/linux9fd1ff5d2ac7181844735806b0a703c9423652919122d7280b2303e835cdfec156bd932ac1f586ed+5
Debianlinux< 6.12.69-1+1

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

3
OSV
CVE-2026-23154: In the Linux kernel, the following vulnerability has been resolved: net: fix segmentation of forwarding fraglist GRO This patch enhances GSO segment h2026-02-14
GHSA
GHSA-fg9w-2hrh-3rjq: In the Linux kernel, the following vulnerability has been resolved: net: fix segmentation of forwarding fraglist GRO This patch enhances GSO segment2026-02-14
CVEList
net: fix segmentation of forwarding fraglist GRO2026-02-14

📋Vendor Advisories

3
Red Hat
kernel: net: fix segmentation of forwarding fraglist GRO2026-02-14
Microsoft
net: fix segmentation of forwarding fraglist GRO2026-02-10
Debian
CVE-2026-23154: linux - In the Linux kernel, the following vulnerability has been resolved: net: fix se...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23154 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-23154 (MEDIUM CVSS 5.5) | In the Linux kernel | cvebase.io