Tobias Böhm

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to the cpumap component of the Linux kernel, where the xdp rxq info struct is not properly initialized before running an XDP program. This leads to random values being returned as the xdp md->rx queue index value for XDP programs running in a cpumap, causing the program to return the contents of uninitialized memory. The problem arises when an XDP program is attached to a cpumap entry and the xdp rxq info data structure is used in the xdp buff that backs the XDP program invocation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.