Denial of Service Vulnerability in nfqnl_mangle in Linux Kernel

Denial of Service Vulnerability in nfqnl_mangle in Linux Kernel

CVE-2022-36946 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negative skb->len.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.