CVE-2022-49872 Information
Description
In the Linux kernel the following vulnerability has been resolved:
net: gso: fix panic on frag_list with mixed head alloc types
Since commit 3dcbdb134f32 ( et: gso: Fix skb_segment splat when splitting gso_size mangled skb having linear-headed frag_list) it is allowed to change gso_size of a GRO packet. However that commit assumes that ## Reference https://git.kernel.org/stable/c/0a9f56e525ea871d3950b90076912f5c7494f00f https://git.kernel.org/stable/c/50868de7dc4e7f0fcadd6029f32bf4387c102ee6 https://git.kernel.org/stable/c/5876b7f249a1ecbbcc8e35072c3828d6526d1c3a https://git.kernel.org/stable/c/598d9e30927b15731e83797fbd700ecf399f42dd https://git.kernel.org/stable/c/65ad047fd83502447269fda8fd26c99077a9af47 https://git.kernel.org/stable/c/9e4b7a99a03aefd37ba7bb1f022c8efab5019165 https://git.kernel.org/stable/c/ad25a115f50800c6847e0d841c5c7992a9f7c1b3 https://git.kernel.org/stable/c/bd5362e58721e4d0d1a37796593bd6e51536ce7a
Share on: