CVE-2022-49573

Source
https://cve.org/CVERecord?id=CVE-2022-49573
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49573.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-49573
Downstream
Published
2025-02-26T02:23:15.157Z
Modified
2026-07-08T06:46:17.304867421Z
Severity
  • 4.7 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
tcp: Fix a data-race around sysctl_tcp_early_retrans.
Details

In the Linux kernel, the following vulnerability has been resolved:

tcp: Fix a data-race around sysctltcpearly_retrans.

While reading sysctltcpearlyretrans, it can be changed concurrently. Thus, we need to add READONCE() to its reader.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49573.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
eed530b6c67624db3f2cf477bac7c4d005d8f7ba
Fixed
488d3ad98ef7cddce7054193dbae6b4349c6807d
Fixed
83767fe800a311370330d4ec83aa76093b744a80
Fixed
11e8b013d16e5db63f8f76acceb5b86964098aaa
Fixed
5037ca9e4b169cc9aed0174d658c3d81fdaf8ea5
Fixed
d5975f6376ce90c2c483ae36bf88c9cface4c13b
Fixed
52e65865deb6a36718a463030500f16530eaab74

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49573.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
3.5.0
Fixed
4.19.254
Type
ECOSYSTEM
Events
Introduced
4.20.0
Fixed
5.4.208
Type
ECOSYSTEM
Events
Introduced
5.5.0
Fixed
5.10.134
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.58
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
5.18.15

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49573.json"