CVE-2022-49975

bpf: Don't redirect packets with invalid pkt_len

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Don't redirect packets with invalid pkt_len Syzbot found an issue [1]: fq_codel_drop() try to drop a flow whitout any skbs, that is, the flow->head is null. The root cause, as the [2] says, is because that bpf_prog_test_run_skb() run a bpf prog which redirects empty skbs. So we should determine whether the length of the packet modified by bpf prog or others like bpf_prog_test is valid before forwarding it directly.

N/A
CVSS
Severity:
EPSS 0.02%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/8b68e53d56697a59b5c53893b53f508bbdf272a0
https://git.kernel.org/stable/c/6204bf78b2a903b96ba43afff6abc0b04d6e0462
https://git.kernel.org/stable/c/a75987714bd2d8e59840667a28e15c1fa5c47554
https://git.kernel.org/stable/c/72f2dc8993f10262092745a88cb2dd0fef094f23
https://git.kernel.org/stable/c/fd1894224407c484f652ad456e1ce423e89bb3eb

Frequently Asked Questions

What is the severity of CVE-2022-49975?
CVE-2022-49975 has not yet been assigned a CVSS score.
How to fix CVE-2022-49975?
To fix CVE-2022-49975, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-49975 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2022-49975 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-49975?
CVE-2022-49975 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.