Wind River Support Network

HomeDefectsLIN1023-18490
Acknowledged

LIN1023-18490 : Security Advisory - linux - CVE-2026-22988

Created: Jan 26, 2026    Updated: Jan 30, 2026
Found In Version: 10.23.30.2
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Kernel

Description

In the Linux kernel, the following vulnerability has been resolved:

arp: do not assume dev_hard_header() does not change skb->head

arp_create() is the only dev_hard_header() caller
making assumption about skb->head being unchanged.

A recent commit broke this assumption.

Initialize @arp pointer after dev_hard_header() call.
  • Linkedin
  • Facebook
  • Twitter
  • Youtube