CVE-2022-49638

MEDIUM EPSS 5.9%
Published Feb 26, 20251y ago · Modified Jun 17, 20261w ago
4.7 CVSS 3.1
Medium
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: icmp: Fix data-races around sysctl. While reading icmp sysctl variables, they can be changed concurrently. So, we need to add READ_ONCE() to avoid data-races.

CVSS Details

Base Score
4.7
Exploitability
1.0
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity High
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
5.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-362

Affected Products 13

VendorProductVersionRange
linuxlinux_kernel*≥3.18  –  <4.9.324
linuxlinux_kernel*≥4.10  –  <4.14.289
linuxlinux_kernel*≥4.15  –  <4.19.253
linuxlinux_kernel*≥4.20  –  <5.4.207
linuxlinux_kernel*≥5.5  –  <5.10.132
linuxlinux_kernel*≥5.11  –  <5.15.56
linuxlinux_kernel*≥5.16  –  <5.18.13
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/0cba7ca667ceb06934746ddd9833a25847bde81d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1740e5922fbb705637ae9fa5203db132fc45f9f6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/48d7ee321ea5182c6a70782aa186422a70e67e22
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/53ecd09ef2fb35fa69667ae8e414ef6b00fd3bf6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/798c2cf57c63ab39c8aac24d6a3d50f4fa5eeb06
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e088ceb73c24ab4774da391d54a6426f4bfaefce
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e2828e8c605853f71267825c9415437c0a93e4f2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/edeec63b13c252193d626c2a48d7a2f0e7016dc2
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0cba7ca667ceb06934746ddd9833a25847bde81d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1740e5922fbb705637ae9fa5203db132fc45f9f6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/48d7ee321ea5182c6a70782aa186422a70e67e22
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/53ecd09ef2fb35fa69667ae8e414ef6b00fd3bf6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/798c2cf57c63ab39c8aac24d6a3d50f4fa5eeb06
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e088ceb73c24ab4774da391d54a6426f4bfaefce
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e2828e8c605853f71267825c9415437c0a93e4f2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/edeec63b13c252193d626c2a48d7a2f0e7016dc2
    Patch