PT-2022-3880 · Linux+10 · Linux Kernel+10

Domingo Dirutigliano

+1

·

Published

2022-07-26

·

Updated

2025-09-29

·

CVE-2022-36946

CVSS v2.0

9.0

High

VectorAV:N/AC:L/Au:N/C:P/I:P/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 5.18.14
Description The issue is related to the nfnetlink queue module in the Linux kernel, which incorrectly handles verdicts with a one-byte nfta payload attribute. This can allow remote attackers to cause a denial of service (panic) because, in the case of an nf queue verdict, an skb pull can encounter a negative skb->len.
Recommendations For Linux kernel versions through 5.18.14, update to a version later than 5.18.14 to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific vulnerability.

Exploit

Fix

RCE

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-404

Related Identifiers

ALSA-2022:7444
ALSA-2022:7683
ALSA-2022:7933
ALSA-2022:8267
ALSA-2024_2394
ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2022-2339
ALT-PU-2022-2340
ALT-PU-2022-2342
ALT-PU-2022-2361
ALT-PU-2022-2362
ALT-PU-2022-2370
ALT-PU-2022-2407
ALT-PU-2022-2417
ALT-PU-2022-2445
ALT-PU-2022-2512
ALT-PU-2022-2633
ALT-PU-2022-2635
ALT-PU-2022-2682
ALT-PU-2022-2692
ALT-PU-2022-2915
ALT-PU-2022-2919
ALT-PU-2023-4894
AZL-10440
BDU:2022-04686
CESA-2022_7444
CESA-2022_7683
CVE-2022-36946
DLA-3102-1
DLA-3131-1
DSA-5207-1
ELSA-2022-7683
ELSA-2022-8267
MGASA-2022-0278
MGASA-2022-0308
OESA-2022-1824
OPENSUSE-SU-2022_2741-1
OPENSUSE-SU-2022_2827-1
OPENSUSE-SU-2022_2875-1
OPENSUSE-SU-2022_3288-1
OPENSUSE-SU-2022_3293-1
OPENSUSE-SU-2022_4617-1
RHSA-2022:7444
RHSA-2022:7683
RHSA-2022:7933
RHSA-2022:8267
RHSA-2022_7444
RHSA-2022_7683
RHSA-2022_7933
RHSA-2022_8267
RHSA-2024:0724
RLSA-2022:7444
RLSA-2022:7683
RLSA-2022_7444
RLSA-2022_7683
SUSE-SU-2022:2719-1
SUSE-SU-2022:2720-1
SUSE-SU-2022:2721-1
SUSE-SU-2022:2723-1
SUSE-SU-2022:2741-1
SUSE-SU-2022:2809-1
SUSE-SU-2022:2827-1
SUSE-SU-2022:2840-1
SUSE-SU-2022:2875-1
SUSE-SU-2022:2875-2
SUSE-SU-2022:2892-1
SUSE-SU-2022:2892-2
SUSE-SU-2022:2910-1
SUSE-SU-2022:3061-1
SUSE-SU-2022:3072-1
SUSE-SU-2022:3108-1
SUSE-SU-2022:3123-1
SUSE-SU-2022:3274-1
SUSE-SU-2022:3288-1
SUSE-SU-2022:3293-1
SUSE-SU-2022:4617-1
SUSE-SU-2022_2719-1
SUSE-SU-2022_2720-1
SUSE-SU-2022_2721-1
SUSE-SU-2022_2723-1
SUSE-SU-2022_2809-1
SUSE-SU-2022_2827-1
SUSE-SU-2022_2840-1
SUSE-SU-2022_3061-1
SUSE-SU-2022_3072-1
SUSE-SU-2022_3108-1
SUSE-SU-2022_3123-1
SUSE-SU-2023:0416-1
USN-5580-1
USN-5590-1
USN-5621-1
USN-5622-1
USN-5623-1
USN-5624-1
USN-5630-1
USN-5633-1
USN-5634-1
USN-5635-1
USN-5639-1
USN-5640-1
USN-5644-1
USN-5647-1
USN-5648-1
USN-5650-1
USN-5652-1
USN-5654-1
USN-5655-1
USN-5660-1
USN-5683-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu