CVE-2022-49234

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-49234

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49234.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-49234

Downstream

DEBIAN-CVE-2022-49234

OESA-2025-2407

OESA-2025-2408

ROOT-OS-DEBIAN-11-CVE-2022-49234

ROOT-OS-UBUNTU-2204-CVE-2022-49234

UBUNTU-CVE-2022-49234

Published

2025-02-26T01:55:59.615Z

Modified

2026-03-12T03:24:50.012173Z

Summary

net: dsa: Avoid cross-chip syncing of VLAN filtering

Details

In the Linux kernel, the following vulnerability has been resolved:

net: dsa: Avoid cross-chip syncing of VLAN filtering

Changes to VLAN filtering are not applicable to cross-chip notifications.

On a system like this:

.-----. .-----. .-----. | sw1 +---+ sw2 +---+ sw3 | '-1-2-' '-1-2-' '-1-2-'

Before this change, upon sw1p1 leaving a bridge, a call to dsaportvlan_filtering would also be made to sw2p1 and sw3p1.

In this scenario:

.---------. .-----. .-----. | sw1 +---+ sw2 +---+ sw3 | '-1-2-3-4-' '-1-2-' '-1-2-'

When sw1p4 would leave a bridge, dsaportvlan_filtering would be called for sw2 and sw3 with a non-existing port - leading to array out-of-bounds accesses and crashes on mv88e6xxx.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49234.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

d371b7c92d190448f3ccbf082c90bf929285f648

Fixed

e1f2a4dd8d433eec393d09273a78a3d3551339cf

Fixed

108dc8741c203e9d6ce4e973367f1bac20c7192b

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49234.json"