CVE-2022-49663

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.19.0-rc2-syzkaller-00443-g8720bd951b8e

Description A bug has been identified in the Linux kernel, specifically in the skb tunnel check pmtu() function. The issue arises from an incorrect assumption about the mac header being set in ndo start xmit() paths. This bug was caught by recently added debug code and is associated with a warning in the skb mac header len function. The vulnerability is related to the geneve xmit skb function in drivers/net/geneve.c and the packet direct xmit function in net/packet/af packet.c.

Recommendations For Linux kernel versions prior to 5.19.0-rc2-syzkaller-00443-g8720bd951b8e, consider updating to a newer version that includes the fix for this issue. As a temporary workaround, consider restricting access to the vulnerable geneve xmit skb function in drivers/net/geneve.c until a patch is available. Additionally, avoid using the packet direct xmit function in net/packet/af packet.c until the issue is resolved.