CVE-2022-49593

medium

Description

In the Linux kernel, the following vulnerability has been resolved: tcp: Fix a data-race around sysctl_tcp_probe_interval. While reading sysctl_tcp_probe_interval, it can be changed concurrently. Thus, we need to add READ_ONCE() to its reader.

References

https://git.kernel.org/stable/c/e6b6f027e2854a51f345a5e3e808d7a88001d4f8

https://git.kernel.org/stable/c/c61aede097d350d890fa1edc9521b0072e14a0b8

https://git.kernel.org/stable/c/b3798d3519eda9c409bb0815b0102f27ec42468d

https://git.kernel.org/stable/c/b14cc8afbbcbc6dce4797913c0b85266b897f541

https://git.kernel.org/stable/c/80dabd089086e6553b7acfcff2ec223bdada87a1

https://git.kernel.org/stable/c/73a11588751a2c13f25d9da8117efc9a79b1843f

https://git.kernel.org/stable/c/2a85388f1d94a9f8b5a529118a2c5eaa0520d85c

Details

Source: Mitre, NVD

Published: 2025-02-26

Updated: 2025-02-26

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H