1. Home
  2. Vulnerabilities
  3. CVE-2022-3643

CVE-2022-3643

CVSS v3.1 6.5 (Medium)
65% Progress
EPSS 0.04 % (15th)
0.04% Progress
Affected Products 3
Advisories 35
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

Guests can trigger NIC interface reset/abort/crash via netback It is possible for a guest to trigger a NIC interface reset/abort/crash in a Linux based network backend by sending certain kinds of packets. It appears to be an (unwritten?) assumption in the rest of the Linux network stack that packet protocol headers are all contained within the linear section of the SKB and some NICs behave badly if this is not the case. This has been reported to occur with Cisco (enic) and Broadcom NetXtrem II BCM5780 (bnx2x) though it may be an issue with other NICs/drivers as well. In case the frontend is sending requests with split headers, netback will forward those violating above mentioned assumption to the networking core, resulting in said misbehavior.

Weaknesses
CWE-74
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
CVE Status
PUBLISHED
CNA
Xen Project
Published Date
2022-12-07 01:15:11
(21 months ago)
Updated Date
2023-11-29 15:15:07
(9 months ago)

Affected Products

Broadcom

Debian

Linux

Configuration #1

AND
    CPE23 From Up To
OR  
  Linux Kernel from 3.19 version and prior 4.9.336 version cpe:2.3:o:linux:linux_kernel >= 3.19 < 4.9.336
OR  
  Running on/with
  Linux Kernel from 4.10 version and prior 4.14.302 version cpe:2.3:o:linux:linux_kernel >= 4.10 < 4.14.302
OR  
  Running on/with
  Linux Kernel from 4.15 version and prior 4.19.269 version cpe:2.3:o:linux:linux_kernel >= 4.15 < 4.19.269
OR  
  Running on/with
  Linux Kernel from 4.20 version and prior 5.4.227 version cpe:2.3:o:linux:linux_kernel >= 4.20 < 5.4.227
OR  
  Running on/with
  Linux Kernel from 5.5 version and prior 5.10.159 version cpe:2.3:o:linux:linux_kernel >= 5.5 < 5.10.159
OR  
  Running on/with
  Linux Kernel from 5.11 version and prior 5.15.83 version cpe:2.3:o:linux:linux_kernel >= 5.11 < 5.15.83
OR  
  Running on/with
  Linux Kernel from 5.16 version and prior 6.0.13 version cpe:2.3:o:linux:linux_kernel >= 5.16 < 6.0.13
OR  
  Running on/with
  Broadcom Bcm5780 cpe:2.3:h:broadcom:bcm5780:-

Configuration #2

    CPE23 From Up To
  Debian Linux 10.0 cpe:2.3:o:debian:debian_linux:10.0