CVE-2022-49593

MEDIUM

Linux Kernel 4.1-5.18.15 - Data Race in sysctl_tcp_probe_interval

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: tcp: Fix a data-race around sysctl_tcp_probe_interval. While reading sysctl_tcp_probe_interval, it can be changed concurrently. Thus, we need to add READ_ONCE() to its reader.

References (7)

Core 7

Core References

Patch

https://git.kernel.org/stable/c/80dabd089086e6553b7acfcff2ec223bdada87a1

Patch

https://git.kernel.org/stable/c/b3798d3519eda9c409bb0815b0102f27ec42468d

Patch

https://git.kernel.org/stable/c/73a11588751a2c13f25d9da8117efc9a79b1843f

Patch

https://git.kernel.org/stable/c/c61aede097d350d890fa1edc9521b0072e14a0b8

Patch

https://git.kernel.org/stable/c/e6b6f027e2854a51f345a5e3e808d7a88001d4f8

Patch

https://git.kernel.org/stable/c/b14cc8afbbcbc6dce4797913c0b85266b897f541

Patch

https://git.kernel.org/stable/c/2a85388f1d94a9f8b5a529118a2c5eaa0520d85c

Scores

CVSS v3 4.7

EPSS 0.0018

EPSS Percentile 7.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-362

Status published

Products (24)

linux/Kernel 4.1.0 - 4.14.290linux

linux/Kernel 4.15.0 - 4.19.254linux

linux/Kernel 4.20.0 - 5.4.208linux

linux/Kernel 5.11.0 - 5.15.58linux

linux/Kernel 5.16.0 - 5.18.15linux

linux/Kernel 5.5.0 - 5.10.134linux

Linux/Linux < 4.1

Linux/Linux 05cbc0db03e82128f2e7e353d4194dd24a1627fe - 2a85388f1d94a9f8b5a529118a2c5eaa0520d85c

Linux/Linux 05cbc0db03e82128f2e7e353d4194dd24a1627fe - 73a11588751a2c13f25d9da8117efc9a79b1843f

Linux/Linux 05cbc0db03e82128f2e7e353d4194dd24a1627fe - 80dabd089086e6553b7acfcff2ec223bdada87a1

... and 14 more

Published Feb 26, 2025

Tracked Since Feb 18, 2026