CVE-2022-48743 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: net: amd-xgbe: Fix skb data length underflow There will be BUG_ON() triggered in include/linux/skbuff.h leading to intermittent kernel panic, when the skb length underflow is detected. Fix this by dropping the packet if such length underflows are seen because of inconsistencies in the hardware descriptors.

Reserved 2024-06-20 | Published 2024-06-20 | Updated 2024-12-19 | Assigner Linux

Product status

Default status

unaffected

fafc9555d87a19c78bcd43ed731c3a73bf0b37a9 before 9924c80bd484340191e586110ca22bff23a49f2e

affected

622c36f143fc9566ba49d7cec994c2da1182d9e2 before 617f9934bb37993b9813832516f318ba874bcb7d

affected

622c36f143fc9566ba49d7cec994c2da1182d9e2 before 34aeb4da20f93ac80a6291a2dbe7b9c6460e9b26

affected

622c36f143fc9566ba49d7cec994c2da1182d9e2 before 9892742f035f7aa7dcd2bb0750effa486db89576

affected

622c36f143fc9566ba49d7cec994c2da1182d9e2 before 4d3fcfe8464838b3920bc2b939d888e0b792934e

affected

622c36f143fc9566ba49d7cec994c2da1182d9e2 before db6fd92316a254be2097556f01bccecf560e53ce

affected

622c36f143fc9566ba49d7cec994c2da1182d9e2 before e8f73f620fee5f52653ed2da360121e4446575c5

affected

622c36f143fc9566ba49d7cec994c2da1182d9e2 before 5aac9108a180fc06e28d4e7fb00247ce603b72ee

affected

Default status

affected

4.11

affected

Any version before 4.11

unaffected

4.9.300

unaffected

4.14.265

unaffected

4.19.228

unaffected

5.4.177

unaffected

5.10.97

unaffected

5.15.20

unaffected

5.16.6

unaffected

5.17

unaffected

References

git.kernel.org/...c/9924c80bd484340191e586110ca22bff23a49f2e

git.kernel.org/...c/617f9934bb37993b9813832516f318ba874bcb7d

git.kernel.org/...c/34aeb4da20f93ac80a6291a2dbe7b9c6460e9b26

git.kernel.org/...c/9892742f035f7aa7dcd2bb0750effa486db89576

git.kernel.org/...c/4d3fcfe8464838b3920bc2b939d888e0b792934e

git.kernel.org/...c/db6fd92316a254be2097556f01bccecf560e53ce

git.kernel.org/...c/e8f73f620fee5f52653ed2da360121e4446575c5

git.kernel.org/...c/5aac9108a180fc06e28d4e7fb00247ce603b72ee

cve.org (CVE-2022-48743)

nvd.nist.gov (CVE-2022-48743)

Download JSON