logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2022-36946

Description

nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negative skb->len.


Affected Package


OS OS Version Package Name Package Version
Debian 12 linux 6.1.4-1
Debian 11 linux 5.10.158-2
Debian 10 linux 4.19.249-2
Debian 999 linux 6.1.7-1
Debian 10 linux-5.10 5.10.136-1~deb10u1

Related