CVE-2026-22988

EPSS 0.03%
Veröffentlicht 23.01.2026 15:24:09
Zuletzt bearbeitet 26.01.2026 15:03:33
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

arp: do not assume dev_hard_header() does not change skb->head

arp_create() is the only dev_hard_header() caller
making assumption about skb->head being unchanged.

A recent commit broke this assumption.

Initialize @arp pointer after dev_hard_header() call.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 10

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < e432dbff342b95fe44645f9a90fcf333c80f4b5e

Version 17e7386234f740f3e7d5e58a47b5847ea34c3bc2

Status affected

Version < 393525dee5c39acff8d6705275d7fcaabcfb7f0a

Version 41a1a3140aff295dee8063906f70a514548105e8

Status affected

Version < 70bddc16491ef4681f3569b3a2c80309a3edcdd1

Version adee129db814474f2f81207bd182bf343832a52e

Status affected

Version < 029935507d0af6553c45380fbf6feecf756fd226

Version 1717357007db150c2d703f13f5695460e960f26c

Status affected

Version < dd6ccec088adff4bdf33e2b2dd102df20a7128fa

Version 5fe210533e3459197eabfdbf97327dacbdc04d60

Status affected

Version < 949647e7771a4a01963fe953a96d81fba7acecf3

Version 91a2b25be07ce1a7549ceebbe82017551d2eec92

Status affected

Version < c92510f5e3f82ba11c95991824a41e59a9c5ed81

Version db5b4e39c4e63700c68a7e65fc4e1f1375273476

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.19-rc4

Status affected

Version < 6.19-rc4

Version 0

Status unaffected

Version <= 6.1.*

Version 6.1.161

Status unaffected

Version <= 6.6.*

Version 6.6.121

Status unaffected

Version <= 6.12.*

Version 6.12.66

Status unaffected

Version <= 6.18.*

Version 6.18.6

Status unaffected

Version <= *

Version 6.19-rc5

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.088

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/e432dbff342b95fe44645f9a90fcf333c80f4b5e

https://git.kernel.org/stable/c/393525dee5c39acff8d6705275d7fcaabcfb7f0a

https://git.kernel.org/stable/c/70bddc16491ef4681f3569b3a2c80309a3edcdd1

https://git.kernel.org/stable/c/029935507d0af6553c45380fbf6feecf756fd226

https://git.kernel.org/stable/c/dd6ccec088adff4bdf33e2b2dd102df20a7128fa

https://git.kernel.org/stable/c/949647e7771a4a01963fe953a96d81fba7acecf3

https://git.kernel.org/stable/c/c92510f5e3f82ba11c95991824a41e59a9c5ed81

https://nvd.nist.gov/vuln/detail/CVE-2026-22988

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-22988

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-22988

EUVD