logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2022-36946

Description

nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negative skb->len.


Affected Software


CPE Name Name Version
linux:linux_kernel linux linux kernel 5.18.14
debian:debian_linux debian debian linux 10.0
debian:debian_linux debian debian linux 11.0
netapp:solidfire_\&_hci_management_node netapp solidfire \& hci management node -
netapp:active_iq_unified_manager netapp active iq unified manager -
netapp:hci_compute_node netapp hci compute node -
netapp:solidfire_\&_hci_storage_node netapp solidfire \& hci storage node -
netapp:solidfire_enterprise_sds netapp solidfire enterprise sds -

Related