CVE-2026-46102

In the Linux kernel, the following vulnerability has been resolved:

net: strparser: fix skb head leak in strp abort strp()

When the stream parser is aborted, for example after a message assembly timeout, it can still hold a reference to a partially assembled message in strp->skb head.

That skb is not released in strp abort strp(), which leaks the partially assembled message and can be triggered repeatedly to exhaust memory.

Fix this by freeing strp->skb head and resetting the parser state in the abort path. Leave strp stop() unchanged so final cleanup still happens in strp done() after the work and timer have been synchronized.