In the Linux kernel, the following vulnerability has been resolved:
ipv4: Fix a data-race around sysctlfibmultipathuseneigh.
While reading sysctlfibmultipathuseneigh, it can be changed concurrently. Thus, we need to add READ_ONCE() to its reader.
{ "urgency": "not yet assigned" }