Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: tcp: Fix a data-race around sysctl_tcp_probe_interval. While reading sysctl_tcp_probe_interval, it can be changed concurrently. Thus, we need to add READ_ONCE() to its reader.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 4.1, < 4.14.290 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/2a85388f1d94a9f8b5a529118a2c5eaa0520d85cPatch
- https://git.kernel.org/stable/c/73a11588751a2c13f25d9da8117efc9a79b1843fPatch
- https://git.kernel.org/stable/c/80dabd089086e6553b7acfcff2ec223bdada87a1Patch
- https://git.kernel.org/stable/c/b14cc8afbbcbc6dce4797913c0b85266b897f541Patch
- https://git.kernel.org/stable/c/b3798d3519eda9c409bb0815b0102f27ec42468dPatch
- https://git.kernel.org/stable/c/c61aede097d350d890fa1edc9521b0072e14a0b8Patch
- https://git.kernel.org/stable/c/e6b6f027e2854a51f345a5e3e808d7a88001d4f8Patch
FAQ
What is CVE-2022-49593?
CVE-2022-49593 is a vulnerability with a CVSS score of 4.7 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: tcp: Fix a data-race around sysctl_tcp_probe_interval. While reading sysctl_tcp_probe_interval, it can be changed concurrently. Th...
How severe is CVE-2022-49593?
CVE-2022-49593 has been rated MEDIUM with a CVSS base score of 4.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-49593?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.