PT-2024-5864 · Linux+5 · Linux Kernel+5

Published

2022-11-15

·

Updated

2024-11-08

·

CVE-2022-48936

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to the Linux kernel's gso component, which fails to skip the outer IP header in certain cases, such as when using ipip and net failover. This can cause a TCP drop issue, leading to a denial of service. The problem occurs when a packet is transmitted with a specific combination of flags (SKB GSO TCPV4, SKB GSO DODGY, and SKB GSO IPXIP4) and the network header points to the inner IP header instead of the outer one. The root cause is a rare combination of SKB GSO DODGY and a tunnel device that adds an SKB GSO tunnel option.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-667

Related Identifiers

ALSA-2024:8856
ALSA-2024:8870
BDU:2024-06641
CESA-2024_8856
CESA-2024_8870
CVE-2022-48936
INFSA-2024_8856
INFSA-2024_8870
RHSA-2022:7933
RHSA-2022:8267
RHSA-2022_7933
RHSA-2022_8267
RHSA-2024:8856
RHSA-2024:8870
RHSA-2024_8856
RHSA-2024_8870
RLSA-2024:8856
RLSA-2024:8870

Affected Products

Almalinux
Centos
Linux Kernel
Red Hat
Red Os
Rocky Linux