CVE-2022-49637

MEDIUM EPSS 6.1%
Published Feb 26, 20251y ago · Modified Jun 17, 20261w ago
4.7 CVSS 3.1
Medium
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ipv4: Fix a data-race around sysctl_fib_sync_mem. While reading sysctl_fib_sync_mem, it can be changed concurrently. So, we need to add READ_ONCE() to avoid a data-race.

CVSS Details

Base Score
4.7
Exploitability
1.0
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity High
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
6.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-362

Affected Products 10

VendorProductVersionRange
linuxlinux_kernel*≥5.2  –  <5.4.207
linuxlinux_kernel*≥5.5  –  <5.10.132
linuxlinux_kernel*≥5.11  –  <5.15.56
linuxlinux_kernel*≥5.16  –  <5.18.13
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any

References 5

  • git.kernel.org https://git.kernel.org/stable/c/190cd4ff128373271e065afb20f1d2247b3f10c3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/418b191d5f223a8cb6cab09eae1f72c04ba6adf2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/73318c4b7dbd0e781aaababff17376b2894745c0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7c1acd98fb221dc0d847451b9ab86319f8b9916c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9be8aac91960ea32fd0e874758c9afee665c57d2
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/190cd4ff128373271e065afb20f1d2247b3f10c3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/418b191d5f223a8cb6cab09eae1f72c04ba6adf2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/73318c4b7dbd0e781aaababff17376b2894745c0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7c1acd98fb221dc0d847451b9ab86319f8b9916c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9be8aac91960ea32fd0e874758c9afee665c57d2
    Patch