CVE-2022-49602

MEDIUM EPSS 7.4%
Published Feb 26, 20251y ago · Modified Jun 17, 20261w ago
4.7 CVSS 3.1
Medium
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ip: Fix a data-race around sysctl_fwmark_reflect. While reading sysctl_fwmark_reflect, it can be changed concurrently. Thus, we need to add READ_ONCE() to its reader.

CVSS Details

Base Score
4.7
Exploitability
1.0
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity High
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
7.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-362

Affected Products 14

VendorProductVersionRange
linuxlinux_kernel*≥3.16  –  <4.9.325
linuxlinux_kernel*≥4.10  –  <4.14.290
linuxlinux_kernel*≥4.15  –  <4.19.254
linuxlinux_kernel*≥4.20  –  <5.4.208
linuxlinux_kernel*≥5.5  –  <5.10.134
linuxlinux_kernel*≥5.11  –  <5.15.58
linuxlinux_kernel*≥5.16  –  <5.18.15
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/0ee76fe01ff3c0b4efaa500aecc90d7c8d3a8860
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/25a635a67c830766110410fea88ec4e6ee29684b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5e7a1be3e68deef250ad43cc91f7bb8d7d758b48
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/85d0b4dbd74b95cc492b1f4e34497d3f894f5d9a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9096edcf4854289f92252e086cf6e498c7f8c21d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a475ecc9ad919aa3ebdd4e4a6ee612b793bf74b3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dccf8a67f30e18980d13f07006e5a536bbd1e136
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fc92e3b4bebfdd986ef1d2c5019f236837b0b982
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0ee76fe01ff3c0b4efaa500aecc90d7c8d3a8860
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/25a635a67c830766110410fea88ec4e6ee29684b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5e7a1be3e68deef250ad43cc91f7bb8d7d758b48
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/85d0b4dbd74b95cc492b1f4e34497d3f894f5d9a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9096edcf4854289f92252e086cf6e498c7f8c21d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a475ecc9ad919aa3ebdd4e4a6ee612b793bf74b3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dccf8a67f30e18980d13f07006e5a536bbd1e136
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fc92e3b4bebfdd986ef1d2c5019f236837b0b982
    Patch