Vulnerability: Freed SKBs in Linux netfront due to XDP support logic

Vulnerability: Freed SKBs in Linux netfront due to XDP support logic

CVE-2022-33743 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP (eXpress Data Path), a code label was moved in a way allowing for SKBs having references (pointers) retained for further processing to nevertheless be freed.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.