CVE-2022-49589

Medium CVSS: 4.7

In the Linux kernel, the following vulnerability has been resolved:

igmp: Fix data-races around sysctl_igmp_qrv.

While reading sysctl_igmp_qrv, it can be changed concurrently.
Thus, we need to add READ_ONCE() to its readers.

This test can be packed into a helper, so such changes will be in the
follow-up series after net is merged into net-next.

qrv ?: READ_ONCE(net->ipv4.sysctl_igmp_qrv);

Vendor

Linux

Product

Linux Kernel

CWE

CWE-362

Yayın Tarihi

2025-02-26 07:01:34

Güncelleme

2025-10-01 20:16:52

Source Identifier

416baaa9-dc9f-4396-8d5f-8c081fb06d67

KEV Date Added

Kategoriler

CWE-362 Linux Kernel MEDIUM Linux 2025

Referanslar

https://git.kernel.org/stable/c/8ebcc62c738f68688ee7c6fec2efe5bc6d3d7e60 https://git.kernel.org/stable/c/9eeb3a7702998bdccbfcc37997b5dd9215b9a7f7 https://git.kernel.org/stable/c/b399ffafffba39f47b731b26a5da1dc0ffc4b3ad https://git.kernel.org/stable/c/c2954671010cd1127d1ffa328c6e6f8e99930982 https://git.kernel.org/stable/c/c721324afc589f8ea54bae04756b150aeaae5fa4 https://git.kernel.org/stable/c/e20dd1b0e0ea15bee1e528536a0840dba972ca0e

Benzer Kayıtlar

Medium

CVE-2026-23238

In the Linux kernel, the following vulnerability has been resolved: romfs: check sb_set_blocksize() return value romfs…

Medium

CVE-2026-23237

In the Linux kernel, the following vulnerability has been resolved: platform/x86: classmate-laptop: Add missing NULL po…

High

CVE-2026-23236

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kerne…

High

CVE-2026-23235

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix out-of-bounds access in sysfs attribute r…

High

CVE-2026-23234

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fs_write_end_io() As s…

High

CVE-2026-23233

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid mapping wrong physical block for…