nfqnl_mangle in net/netfilter/nfnetlink_queue.c allows remote attackers to cause a denial of service in the case of a nf_queue verdict with a one-byte nfta_payload attribute skb_pull can encounter a negative skb->len
nfqnl_mangle in net/netfilter/nfnetlink_queue.c allows remote attackers to cause a denial of service in the case of a nf_queue verdict with a one-byte nfta_payload attribute skb_pull can encounter a negative skb->len
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=99a63d36cb3ed5ca3aa6fcb64cffbeaf3b0fb164 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7af4cc3fa158ff1dda6e7451c7e6afa6b0bb85cb https://marc.info/?l=netfilter-devel&m=165883202007292&w=2 https://kernel.dance/#CVE-2022-36946