CVE-2022-3643 — MEDIUM (6.5)

Q: How severe is CVE-2022-3643?

CVE-2022-3643 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-3643?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Broadcom Bcm5780, Debian Debian Linux.

Vulnerability Description

Guests can trigger NIC interface reset/abort/crash via netback It is possible for a guest to trigger a NIC interface reset/abort/crash in a Linux based network backend by sending certain kinds of packets. It appears to be an (unwritten?) assumption in the rest of the Linux network stack that packet protocol headers are all contained within the linear section of the SKB and some NICs behave badly if this is not the case. This has been reported to occur with Cisco (enic) and Broadcom NetXtrem II BCM5780 (bnx2x) though it may be an issue with other NICs/drivers as well. In case the frontend is sending requests with split headers, netback will forward those violating above mentioned assumption to the networking core, resulting in said misbehavior.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	>= 3.19, < 4.9.336
Broadcom	Bcm5780	-
Debian	Debian Linux	10.0

Related Weaknesses (CWE)

CWE-74

References

http://packetstormsecurity.com/files/175963/Kernel-Live-Patch-Security-Notice-LS
http://www.openwall.com/lists/oss-security/2022/12/07/2Mailing ListThird Party Advisory
https://lists.debian.org/debian-lts-announce/2022/12/msg00031.htmlMailing ListThird Party Advisory
https://lists.debian.org/debian-lts-announce/2022/12/msg00034.htmlMailing ListThird Party Advisory
https://xenbits.xenproject.org/xsa/advisory-423.txtVendor Advisory
http://packetstormsecurity.com/files/175963/Kernel-Live-Patch-Security-Notice-LS
http://www.openwall.com/lists/oss-security/2022/12/07/2Mailing ListThird Party Advisory
https://lists.debian.org/debian-lts-announce/2022/12/msg00031.htmlMailing ListThird Party Advisory
https://lists.debian.org/debian-lts-announce/2022/12/msg00034.htmlMailing ListThird Party Advisory
https://xenbits.xenproject.org/xsa/advisory-423.txtVendor Advisory

FAQ

What is CVE-2022-3643?

CVE-2022-3643 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Guests can trigger NIC interface reset/abort/crash via netback It is possible for a guest to trigger a NIC interface reset/abort/crash in a Linux based network backend by sending certain kinds of pack...

How severe is CVE-2022-3643?

CVE-2022-3643 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-3643?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Broadcom Bcm5780, Debian Debian Linux.