CVE-2022-33743

CVSS v3.1 7.8 (High)

CVSS v2.0 4.6 (Medium)

EPSS 0.04 % (5^th)

Affected Products 3

Advisories 23

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP (eXpress Data Path), a code label was moved in a way allowing for SKBs having references (pointers) retained for further processing to nevertheless be freed.

Weaknesses

CWE-NVD-noinfo

CVE Status: PUBLISHED
CNA: Xen Project
Published Date: 2022-07-05 13:15:08
(2 years ago)
Updated Date: 2022-11-05 03:06:47
(22 months ago)

Affected Products

Debian

Debian Linux

Linux

Linux Kernel

Xen

Xen

Configuration #1

		CPE23	From	Up To
	Linux Kernel from 5.9 version and 5.18 and prior versions	cpe:2.3:o:linux:linux_kernel	>= 5.9	<= 5.18
	Xen	cpe:2.3:o:xen:xen:-

Configuration #2

		CPE23	From	Up To
	Debian Linux 11.0	cpe:2.3:o:debian:debian_linux:11.0