Critical Use After Free Vulnerability in Linux Kernel Ethernet Handler (VDB-211935)

Critical Use After Free Vulnerability in Linux Kernel Ethernet Handler (VDB-211935)

CVE-2022-3636 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A vulnerability, which was classified as critical, was found in Linux Kernel. This affects the function __mtk_ppe_check_skb of the file drivers/net/ethernet/mediatek/mtk_ppe.c of the component Ethernet Handler. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-211935.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.