Guillaume Nault

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified) Description: The issue is related to the `seg6 init()` function in the Linux kernel's IPv6 implementation. Specifically, the error path of `seg6 init()` is incorrect when `CONFIG IPV6 SEG6 LWTUNNEL` is not defined, leading to a situation where `genl unregister family()` is not called if `seg6 hmac init()` fails. This problem exists since a specific commit and was exacerbated by another commit that replaced `unregister pernet subsys()` with `genl unregister family()` in the error path. The vulnerability could potentially allow a remote attacker to impact the confidentiality, integrity, and availability of protected information. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A vulnerability in the Linux kernel has been resolved. The issue occurs when a decapsulated packet is fed to a veth device with act mirred, and `skb headlen()` may be 0. However, `veth xmit()` calls ` dev forward skb()`, which expects at least `ETH HLEN` byte of linear data. To fix this, `pskb may pull()` is used to ensure `veth xmit()` respects this constraint. The vulnerability can cause a kernel bug, leading to a crash. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.