CVE-2022-49967

MEDIUM

Linux Kernel 4.9.190-4.10 - Race Condition in BPF JIT Limit Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a data-race around bpf_jit_limit. While reading bpf_jit_limit, it can be changed concurrently via sysctl, WRITE_ONCE() in __do_proc_doulongvec_minmax(). The size of bpf_jit_limit is long, so we need to add a paired READ_ONCE() to avoid load-tearing.

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/ba632ad0bacb13197a8f38e7526448974e87f292

Patch

https://git.kernel.org/stable/c/0947ae1121083d363d522ff7518ee72b55bd8d29

Scores

CVSS v3 4.7

EPSS 0.0012

EPSS Percentile 2.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-362

Status published

Products (14)

Linux/Linux < 4.20

Linux/Linux 4.14.140 - 4.15

Linux/Linux 4.19.47 - 4.20

Linux/Linux 4.20

Linux/Linux 4.9.190 - 4.10

Linux/Linux 43caa29c99db5a41b204e8ced01b00e151335ca8

Linux/Linux 5.19.8 - 5.19.*

Linux/Linux 6.0

Linux/Linux a1fe647042affe713a17243cd10e9b25f3d83948

Linux/Linux c98446e1bab6253ddce7144cc2a91c400a323839

... and 4 more

Published Jun 18, 2025

Tracked Since Feb 18, 2026