{"id":"CVE-2026-22988","summary":"arp: do not assume dev_hard_header() does not change skb-\u003ehead","details":"In the Linux kernel, the following vulnerability has been resolved:\n\narp: do not assume dev_hard_header() does not change skb-\u003ehead\n\narp_create() is the only dev_hard_header() caller\nmaking assumption about skb-\u003ehead being unchanged.\n\nA recent commit broke this assumption.\n\nInitialize @arp pointer after dev_hard_header() call.","modified":"2026-03-31T17:29:35.579989Z","published":"2026-01-23T15:24:09.756Z","related":["SUSE-SU-2026:0447-1","SUSE-SU-2026:0472-1","SUSE-SU-2026:0473-1","SUSE-SU-2026:0587-1","SUSE-SU-2026:20477-1","SUSE-SU-2026:20498-1","SUSE-SU-2026:20555-1","SUSE-SU-2026:20599-1","SUSE-SU-2026:20615-1","SUSE-SU-2026:20845-1","SUSE-SU-2026:20876-1","openSUSE-SU-2026:20287-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/22xxx/CVE-2026-22988.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/029935507d0af6553c45380fbf6feecf756fd226"},{"type":"WEB","url":"https://git.kernel.org/stable/c/393525dee5c39acff8d6705275d7fcaabcfb7f0a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/70bddc16491ef4681f3569b3a2c80309a3edcdd1"},{"type":"WEB","url":"https://git.kernel.org/stable/c/949647e7771a4a01963fe953a96d81fba7acecf3"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c92510f5e3f82ba11c95991824a41e59a9c5ed81"},{"type":"WEB","url":"https://git.kernel.org/stable/c/dd6ccec088adff4bdf33e2b2dd102df20a7128fa"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e432dbff342b95fe44645f9a90fcf333c80f4b5e"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/22xxx/CVE-2026-22988.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-22988"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"17e7386234f740f3e7d5e58a47b5847ea34c3bc2"},{"fixed":"e432dbff342b95fe44645f9a90fcf333c80f4b5e"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"41a1a3140aff295dee8063906f70a514548105e8"},{"fixed":"393525dee5c39acff8d6705275d7fcaabcfb7f0a"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"adee129db814474f2f81207bd182bf343832a52e"},{"fixed":"70bddc16491ef4681f3569b3a2c80309a3edcdd1"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"1717357007db150c2d703f13f5695460e960f26c"},{"fixed":"029935507d0af6553c45380fbf6feecf756fd226"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"5fe210533e3459197eabfdbf97327dacbdc04d60"},{"fixed":"dd6ccec088adff4bdf33e2b2dd102df20a7128fa"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"91a2b25be07ce1a7549ceebbe82017551d2eec92"},{"fixed":"949647e7771a4a01963fe953a96d81fba7acecf3"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"db5b4e39c4e63700c68a7e65fc4e1f1375273476"},{"fixed":"c92510f5e3f82ba11c95991824a41e59a9c5ed81"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-22988.json"}}],"schema_version":"1.7.5"}