Linux · Linux Kernel · CVE-2026-23270
**Name of the Vulnerable Software and Affected Versions**
Linux Kernel (affected versions not specified)
**Description**
The Linux kernel contains an issue related to network packet scheduling. Specifically, the `act ct` action was found to potentially cause a Use-After-Free (UAF) condition when interacting with the defragmentation engine if a packet returns `TC ACT CONSUMED` while held by the engine. This can occur when `act ct` is used in the egress path. To address this, the kernel now restricts `act ct` to only bind to `clsact/ingress` qdiscs and shared blocks. This allows `act ct` to still function in egress scenarios, but only with `clsact`. The `skb` variable is involved in this issue.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.