Security Advisory

CVE-2026-22988

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-23 15:24:09

Last updated 2026-02-09 08:36:38

Assigner Linux

State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: arp: do not assume dev_hard_header() does not change skb->head arp_create() is the only dev_hard_header() caller making assumption about skb->head being unchanged. A recent commit broke this assumption. Initialize @arp pointer after dev_hard_header() call.

← Browse all CVEs View on cve.org ↗