CVE-2022-49577
udp: Fix a data-race around sysctl_udp_l3mdev_accept.
In the Linux kernel, the following vulnerability has been resolved:
udp: Fix a data-race around sysctl_udp_l3mdev_accept.
While reading sysctl_udp_l3mdev_accept, it can be changed concurrently.
Thus, we need to add READ_ONCE() to its reader.
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Productos afectados
Linux · Linux¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://git.kernel.org/stable/c/3d72bb4188c708bb16758c60822fc4dda7a95174https://git.kernel.org/stable/c/3f2ac2d6511bb0652abf4d7388d65bb9ff1c641chttps://git.kernel.org/stable/c/cb0d28934ca10f99c47e2c6f451405d6c954fe48https://git.kernel.org/stable/c/f39b03bd727a8fea62e82f10fe2e0d753b9930ffhttps://git.kernel.org/stable/c/fcaef69c79ec222e55643e666b80b221e70fa6a8