CVE-2022-49642
📋 TL;DR
A Linux kernel vulnerability in the Synopsys DWC Ethernet driver for Tegra194 systems causes integer overflow when split header feature is enabled. This leads to kernel crashes when processing malformed network packets. Only systems with Tegra194 hardware running affected Linux kernel versions are impacted.
💻 Affected Systems
- Linux kernel with stmmac driver for Tegra194
📦 What is this software?
Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →⚠️ Risk & Real-World Impact
Worst Case
Kernel panic leading to system crash and denial of service, potentially causing data loss or service disruption.
Likely Case
Random system crashes when processing certain network traffic, resulting in downtime and service interruptions.
If Mitigated
No impact if split header feature is disabled or system is patched.
🎯 Exploit Status
Exploitation requires sending network packets to trigger the integer overflow. No authentication needed.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Linux kernel with commits 029c1c2059e9c4b38f97a06204cdecd10cfbeb8a or later
Vendor Advisory: https://git.kernel.org/stable/c/029c1c2059e9c4b38f97a06204cdecd10cfbeb8a
Restart Required: Yes
Instructions:
1. Update Linux kernel to version containing the fix. 2. For distributions: Use package manager (apt/yum/dnf) to update kernel package. 3. Reboot system to load new kernel.
🔧 Temporary Workarounds
Disable split header feature
linuxManually disable the split header feature in the stmmac driver for Tegra194 systems
echo 0 > /sys/class/net/<interface>/split_hdr
🧯 If You Can't Patch
- Implement network filtering to block suspicious packets to affected systems
- Isolate Tegra194 systems from untrusted networks
🔍 How to Verify
Check if Vulnerable:
Check if system has Tegra194 hardware and if split header is enabled: cat /sys/class/net/<interface>/split_hdrCheck Version:
uname -rVerify Fix Applied:
Check kernel version contains fix commit or verify split header is disabled for Tegra194📡 Detection & Monitoring
Log Indicators:
- Kernel panic logs
- System crash dumps
- Network driver error messages
Network Indicators:
- Unexpected large packets to Tegra194 systems
SIEM Query:
source="kernel" AND ("panic" OR "crash" OR "stmmac" OR "dwc-qos")🔗 References
- https://git.kernel.org/stable/c/029c1c2059e9c4b38f97a06204cdecd10cfbeb8a
- https://git.kernel.org/stable/c/2968830c9b47ce093237483c6207c61065712386
- https://git.kernel.org/stable/c/9cc8edc571b871d974b3289868553f9ce544aba6
- https://git.kernel.org/stable/c/cfa4caf3e881ad6dd366c903c34f1c7f21b857ab
- https://git.kernel.org/stable/c/d5c315a787652c35045044877a249f7d5c8a4104
