CVE-2022-49639

MEDIUM EPSS 5.9%
Published Feb 26, 20251y ago · Modified Jun 17, 20261w ago
4.7 CVSS 3.1
Medium
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: cipso: Fix data-races around sysctl. While reading cipso sysctl variables, they can be changed concurrently. So, we need to add READ_ONCE() to avoid data-races.

CVSS Details

Base Score
4.7
Exploitability
1.0
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity High
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
5.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-362

Affected Products 13

VendorProductVersionRange
linuxlinux_kernel*≥2.6.19  –  <4.9.324
linuxlinux_kernel*≥4.10  –  <4.14.289
linuxlinux_kernel*≥4.15  –  <4.19.253
linuxlinux_kernel*≥4.20  –  <5.4.207
linuxlinux_kernel*≥5.5  –  <5.10.132
linuxlinux_kernel*≥5.11  –  <5.15.56
linuxlinux_kernel*≥5.16  –  <5.18.13
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/07b0caf8aeb9b82e6ecc6c292a3e47c7fcdb1148
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/0e41a0f73ccb9be112a80bde3804a771633caaef
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2764f82bbc158d106693ae3ced3675cf4b963b35
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/59e26906b89cc35bb54476498772b45cbc32323f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c321e99d2725d11f7e6a4ebd9ce752259f0bae81
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ca26ca5e2f3eeb3e6fe699cd6effa3b4b2aa8698
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dd44f04b9214adb68ef5684ae87a81ba03632250
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fe2a35fa2c4f9c8ce5ef970eb927031387f9446a
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/07b0caf8aeb9b82e6ecc6c292a3e47c7fcdb1148
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/0e41a0f73ccb9be112a80bde3804a771633caaef
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2764f82bbc158d106693ae3ced3675cf4b963b35
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/59e26906b89cc35bb54476498772b45cbc32323f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c321e99d2725d11f7e6a4ebd9ce752259f0bae81
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ca26ca5e2f3eeb3e6fe699cd6effa3b4b2aa8698
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dd44f04b9214adb68ef5684ae87a81ba03632250
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fe2a35fa2c4f9c8ce5ef970eb927031387f9446a
    Patch