In the Linux kernel, the following vulnerability has been resolved:
bpf: Add BPFPROGTYPECGROUPSKB attach type enforcement in BPFLINKCREATE
bpfprogattach uses attachtypetoprogtype to enforce proper attach type for BPFPROGTYPECGROUPSKB. linkcreate uses bpfprogget and relies on bpfprogattachcheckattachtype to properly verify progtype <> attachtype association.
Add missing attachtype enforcement for the linkcreate case. Otherwise, it's currently possible to attach cgroup_skb prog types to other cgroup hooks.