VDB

CISA-2022-49597

CISA-2022-49597 PUBLISHED CVSS 4.7 MEDIUM

Reported by Linux · Published February 26, 2025

In the Linux kernel, the following vulnerability has been resolved: tcp: Fix data-races around sysctl_tcp_base_mss. While reading sysctl_tcp_base_mss, it can be changed concurrently. Thus, we need to add READ_ONCE() to its readers.

Risk Scores

CVSS 3.1
4.7
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
LinuxLinux5d424d5a674f782d0659a3b66d951f412901faee, 5d424d5a674f782d0659a3b66d951f412901faee, 5d424d5a674f782d0659a3b66d951f412901faee
LinuxLinux2.6.17, 0, 5.4.208
linuxlinux_kernel2.6.17, 2.6.17, 2.6.17
LinuxLinux5d424d5a674f782d0659a3b66d951f412901faee, 5d424d5a674f782d0659a3b66d951f412901faee, 5d424d5a674f782d0659a3b66d951f412901faee

Timeline

  • Feb 26, 2025 CVE Published
  • Oct 1, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›