CVE-2022-49594

MEDIUM EPSS 7.6%
Published Feb 26, 20251y ago · Modified Jun 17, 20261w ago
4.7 CVSS 3.1
Medium
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: tcp: Fix a data-race around sysctl_tcp_mtu_probe_floor. While reading sysctl_tcp_mtu_probe_floor, it can be changed concurrently. Thus, we need to add READ_ONCE() to its reader.

CVSS Details

Base Score
4.7
Exploitability
1.0
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity High
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
7.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-362

Affected Products 11

VendorProductVersionRange
linuxlinux_kernel*≥5.4  –  <5.4.208
linuxlinux_kernel*≥5.5  –  <5.10.134
linuxlinux_kernel*≥5.11  –  <5.15.58
linuxlinux_kernel*≥5.16  –  <5.18.15
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any

References 5

  • git.kernel.org https://git.kernel.org/stable/c/033963b220633ed1602d458e7e4ac06afa9fefb2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8e92d4423615a5257d0d871fc067aa561f597deb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cc36c37f5fe066c4708e623ead96dc8f57224bf5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d5bece4df6090395f891110ef52a6f82d16685db
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e2ecbf3f0aa88277d43908c53b99399d55729ff9
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/033963b220633ed1602d458e7e4ac06afa9fefb2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8e92d4423615a5257d0d871fc067aa561f597deb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cc36c37f5fe066c4708e623ead96dc8f57224bf5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d5bece4df6090395f891110ef52a6f82d16685db
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e2ecbf3f0aa88277d43908c53b99399d55729ff9
    Patch