Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: ipvs: fix WARNING in ip_vs_app_net_cleanup() During the initialization of ip_vs_app_net_init(), if file ip_vs_app fails to be created, the initialization is successful by default. Therefore, the ip_vs_app file doesn't be found during the remove in ip_vs_app_net_cleanup(). It will cause WRNING. The following is the stack information: name 'ip_vs_app' WARNING: CPU: 1 PID: 9 at fs/proc/generic.c:712 remove_proc_entry+0x389/0x460 Modules linked in: Workqueue: netns cleanup_net RIP: 0010:remove_proc_entry+0x389/0x460 Call Trace: <TASK> ops_exit_list+0x125/0x170 cleanup_net+0x4ea/0xb00 process_one_work+0x9bf/0x1710 worker_thread+0x665/0x1080 kthread+0x2e4/0x3a0 ret_from_fork+0x1f/0x30 </TASK>
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 2.6.24, < 4.19.265 |
References
- https://git.kernel.org/stable/c/06d7596d18725f1a93cf817662d36050e5afb989Patch
- https://git.kernel.org/stable/c/2c8d81bdb2684d53d6cedad7410ba4cf9090e343Patch
- https://git.kernel.org/stable/c/5663ed63adb9619c98ab7479aa4606fa9b7a548cPatch
- https://git.kernel.org/stable/c/8457a00c981fe1a799ce34123908856b0f5973b8Patch
- https://git.kernel.org/stable/c/97f872b00937f2689bff2dab4ad9ed259482840fPatch
- https://git.kernel.org/stable/c/adc76740ccd52e4a1d910767cd1223e134a7078bPatch
FAQ
What is CVE-2022-49917?
CVE-2022-49917 is a vulnerability with a CVSS score of 7.8 (HIGH). In the Linux kernel, the following vulnerability has been resolved: ipvs: fix WARNING in ip_vs_app_net_cleanup() During the initialization of ip_vs_app_net_init(), if file ip_vs_app fails to be crea...
How severe is CVE-2022-49917?
CVE-2022-49917 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-49917?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.