CVE-2026-22988

Published: Jan 23, 2026

Modified: May 11, 2026

PUBLISHED

CVSS v3.1

7.8

HIGH

Description

In the Linux kernel, the following vulnerability has been resolved: arp: do not assume dev_hard_header() does not change skb->head arp_create() is the only dev_hard_header() caller making assumption about skb->head being unchanged. A recent commit broke this assumption. Initialize @arp pointer after dev_hard_header() call.

Vendor	Product	Versions
Linux	Linux	affected `17e7386234f740f3e7d5e58a47b5847ea34c3bc2 - < e432dbff342b95fe44645f9a90fcf333c80f4b5e` affected `41a1a3140aff295dee8063906f70a514548105e8 - < 393525dee5c39acff8d6705275d7fcaabcfb7f0a` affected `adee129db814474f2f81207bd182bf343832a52e - < 70bddc16491ef4681f3569b3a2c80309a3edcdd1` affected `1717357007db150c2d703f13f5695460e960f26c - < 029935507d0af6553c45380fbf6feecf756fd226` affected `5fe210533e3459197eabfdbf97327dacbdc04d60 - < dd6ccec088adff4bdf33e2b2dd102df20a7128fa` +2 more versions
Linux	Linux	affected `6.1.160 - < 6.1.161` affected `6.6.120 - < 6.6.121` affected `6.12.64 - < 6.12.66` affected `6.18.4 - < 6.18.6`