← back
CVE-2022-49600

ip: Fix a data-race around sysctl_ip_autobind_reuse.

CVSS 4.7 MEDIUMEPSS 0.2%CWE-362
In the Linux kernel, the following vulnerability has been resolved: ip: Fix a data-race around sysctl_ip_autobind_reuse. While reading sysctl_ip_autobind_reuse, it can be changed concurrently. Thus, we need to add READ_ONCE() to its reader.
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected products
Linux · Linux

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://git.kernel.org/stable/c/0db232765887d9807df8bcb7b6f29b2871539eabhttps://git.kernel.org/stable/c/611ba70e5aca252ef43374dda97ed4cf1c47a07chttps://git.kernel.org/stable/c/87ceaa199a72c5856d49a030941fabcd5c3928d4https://git.kernel.org/stable/c/fa7cdcf9b28d13aac1eeb34b948db8a18e041341