Primary

Context

Linux Kernel Memory Leak Vulnerability in skb_segment_list for GRO Packets

Vulnerability

Patched

A memory leak vulnerability has been identified in the Linux kernel's handling of Generic Receive Offload (GRO) packets. The issue arises in the skb_segment_list function, which is responsible for segmenting packets that have been aggregated by the GRO engine. The vulnerability affects several versions of the Linux kernel.

Impact

The vulnerability leads to a persistent memory leak by causing the socket memory allocation to remain non-zero, which prevents proper socket destruction. This issue can be observed through the KMEMLEAK tool when dismantling the networking environment.

Reproduction

The vulnerability can be reproduced by using the 'ping' command, which generates packets that trigger the memory leak. The KMEMLEAK tool can be used to observe the unreferenced objects that indicate the memory leak.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed.

Added: Jan 23, 2026, 4:38 PM

Updated: Jan 23, 2026, 4:38 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.7

remediation

7.7

relevance

2.4

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.7

remediation

7.7

relevance

2.4

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Memory Leak Vulnerability in skb_segment_list for GRO Packets

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating