CVE-2022-49340

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved. The issue is related to the ip gre module, where the GRE protocol with TUNNEL CSUM applies local checksum offload on CHECKSUM PARTIAL packets. The function ipgre xmit must validate csum start after an optional skb pull to prevent an overflow. The original check had false positives when skb checksum start is undefined. The revised check restricts the validation to the branch where it is needed and tests skb transport header, which is set along with csum start in the normal header ops datapath. However, skbs can arrive in this branch without the transport header set, for example, through BPF redirection. The check has been revised to check csum start directly, but only if CHECKSUM PARTIAL.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.