CVE-2022-48719

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, related to the neighbor entry turning to NUD FAILED state, where neigh event send() triggered an immediate probe as per commit cd28ca0a3dd1 ("neigh: reduce arp latency") via neigh probe() given table lock was held. This situation can lead to a deadlock for NTF MANAGED entries. The fix adds a parameter to neigh event send() to communicate whether immediate probe is allowed or disallowed. Existing call-sites of neigh event send() default as-is to immediate probe, but neigh managed work() disables it via use of neigh event send probe().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.