CVE-2021-47293

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue arises from the tcf skbmod act() function assuming that packets use Ethernet as their L2 protocol, which is not always the case. This can lead to silent corruption of packets when using non-Ethernet protocols, such as CAN devices. The problem occurs when the skbmod action is performed on non-Ethernet packets. To demonstrate this, an example is given using CAN devices, where the ip link add and tc qdisc add commands are used to set up a network interface and traffic control, respectively. The matchall action skbmod swap mac command is then used to swap the MAC addresses of packets, which silently corrupts them.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.