PT-2025-8628 · Linux+4 · Linux Kernel+4

Lorenzo Bianconi

Published

2022-06-17

Updated

2025-04-14

CVE-2022-49695

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.18.3-apu2 #9

Description A use-after-free issue has been identified in the igb clean tx ring routine when the NIC is running in XDP mode. This issue can be triggered by redirecting traffic into the igb NIC and then closing the device while the traffic is flowing. The problem arises from the igb clean tx ring function, which is called by igb down, igb close, and igb xdp.

Recommendations For Linux kernel version 5.18.3-apu2 #9 and earlier, consider updating to a newer version that includes the fix for the use-after-free issue in the igb clean tx ring routine. As a temporary workaround, consider disabling the XDP mode for the igb NIC to minimize the risk of exploitation.

Exploit

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2025-04417

CESA-2022_7683

CVE-2022-49695

RHSA-2022:7683

RHSA-2022:8267

RHSA-2022_7683

RHSA-2022_8267

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1241-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

Affected Products

Astra Linux

Centos

Linux Kernel

Red Hat

Suse

PT-2025-8628 · Linux+4 · Linux Kernel+4

CVE-2022-49695

Weakness Enumeration

Related Identifiers

Affected Products

References · 1335