CVE-2022-49639

Summary

In the Linux kernel, the following vulnerability has been resolved:

cipso: Fix data-races around sysctl.

While reading cipso sysctl variables, they can be changed concurrently. So, we need to add READ_ONCE() to avoid data-races.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux446fda4f26822b2d42ab3396aafcedf38a9ff2b6 < 2764f82bbc158d106693ae3ced3675cf4b963b35affected
LinuxLinux446fda4f26822b2d42ab3396aafcedf38a9ff2b6 < c321e99d2725d11f7e6a4ebd9ce752259f0bae81affected
LinuxLinux446fda4f26822b2d42ab3396aafcedf38a9ff2b6 < ca26ca5e2f3eeb3e6fe699cd6effa3b4b2aa8698affected
LinuxLinux446fda4f26822b2d42ab3396aafcedf38a9ff2b6 < 0e41a0f73ccb9be112a80bde3804a771633caaefaffected
LinuxLinux446fda4f26822b2d42ab3396aafcedf38a9ff2b6 < fe2a35fa2c4f9c8ce5ef970eb927031387f9446aaffected
LinuxLinux446fda4f26822b2d42ab3396aafcedf38a9ff2b6 < 07b0caf8aeb9b82e6ecc6c292a3e47c7fcdb1148affected
LinuxLinux446fda4f26822b2d42ab3396aafcedf38a9ff2b6 < 59e26906b89cc35bb54476498772b45cbc32323faffected
LinuxLinux446fda4f26822b2d42ab3396aafcedf38a9ff2b6 < dd44f04b9214adb68ef5684ae87a81ba03632250affected
LinuxLinux2.6.19affected
LinuxLinux0 < 2.6.19unaffected
LinuxLinux4.9.324 <= 4.9.*unaffected
LinuxLinux4.14.289 <= 4.14.*unaffected
LinuxLinux4.19.253 <= 4.19.*unaffected
LinuxLinux5.4.207 <= 5.4.*unaffected
LinuxLinux5.10.132 <= 5.10.*unaffected
LinuxLinux5.15.56 <= 5.15.*unaffected
LinuxLinux5.18.13 <= 5.18.*unaffected
LinuxLinux5.19 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References