CVE-2022-49597

MEDIUM EPSS 7.3%
Published Feb 26, 20251y ago · Modified Jun 17, 20261w ago
4.7 CVSS 3.1
Medium
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: tcp: Fix data-races around sysctl_tcp_base_mss. While reading sysctl_tcp_base_mss, it can be changed concurrently. Thus, we need to add READ_ONCE() to its readers.

CVSS Details

Base Score
4.7
Exploitability
1.0
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity High
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
7.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-362

Affected Products 11

VendorProductVersionRange
linuxlinux_kernel*≥2.6.17  –  <5.4.208
linuxlinux_kernel*≥5.5  –  <5.10.134
linuxlinux_kernel*≥5.11  –  <5.15.58
linuxlinux_kernel*≥5.16  –  <5.18.15
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any

References 5

  • git.kernel.org https://git.kernel.org/stable/c/30b73edc1d2459ba2c71cb58fbf84a1a6e640fbf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4d7dea651b7fe0322be95054f64e3711afccc543
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/514d2254c7b8aa2d257f5ffc79f0d96be2d6bfda
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/88d78bc097cd8ebc6541e93316c9d9bf651b13e8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9ca18116bc16ec31b9a3ce28ea1350badfa36128
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/30b73edc1d2459ba2c71cb58fbf84a1a6e640fbf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4d7dea651b7fe0322be95054f64e3711afccc543
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/514d2254c7b8aa2d257f5ffc79f0d96be2d6bfda
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/88d78bc097cd8ebc6541e93316c9d9bf651b13e8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9ca18116bc16ec31b9a3ce28ea1350badfa36128
    Patch