PT-2022-6166 · Cisco+6 · Cisco+6
Published
2022-10-21
·
Updated
2023-11-29
·
CVE-2022-3643
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Linux (affected versions not specified)
Description
The issue is related to the Linux network backend, specifically the netback driver, where a guest can trigger a NIC interface reset, abort, or crash by sending certain kinds of packets. This is due to an assumption in the Linux network stack that packet protocol headers are contained within the linear section of the SKB, which some NICs do not handle correctly if this assumption is not met. The problem has been reported with Cisco and Broadcom NetXtrem II BCM5780 NICs, but it may also affect other NICs or drivers. When the frontend sends requests with split headers, netback forwards these packets to the networking core, resulting in misbehavior.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Improper Resource Release
Special Elements Injection
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Broadcom Netxtrem Ii Bcm5780
Cisco
Linuxmint
Suse
Ubuntu