CVE-2022-49576

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-49576
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49576.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-49576
Downstream
Published
2025-02-26T02:23:16.629Z
Modified
2026-05-12T03:52:34.133283228Z
Severity
  • 4.7 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
ipv4: Fix data-races around sysctl_fib_multipath_hash_fields.
Details

In the Linux kernel, the following vulnerability has been resolved:

ipv4: Fix data-races around sysctlfibmultipathhashfields.

While reading sysctlfibmultipathhashfields, it can be changed concurrently. Thus, we need to add READ_ONCE() to its readers.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49576.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
ce5c9c20d364f156c885efed8c71fca2945db00f
Fixed
36f5b86f309b3b11295d087cd7433f1c897caf94
Fixed
548d6678c4a3d43667e59686665f8674b82440a3
Fixed
8895a9c2ac76fb9d3922fed4fe092c8ec5e5cccc

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49576.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.14.0
Fixed
5.15.58
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
5.18.15

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49576.json"