CVE-2022-49600

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-49600

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49600.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-49600

Downstream

DEBIAN-CVE-2022-49600

RHSA-2023:2458

UBUNTU-CVE-2022-49600

Published

2025-02-26T02:23:28.430Z

Modified

2026-03-10T21:48:03.794158Z

Severity

4.7 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

ip: Fix a data-race around sysctl_ip_autobind_reuse.

Details

In the Linux kernel, the following vulnerability has been resolved:

ip: Fix a data-race around sysctlipautobind_reuse.

While reading sysctlipautobindreuse, it can be changed concurrently. Thus, we need to add READONCE() to its reader.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49600.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

4b01a9674231a97553a55456d883f584e948a78d

Fixed

611ba70e5aca252ef43374dda97ed4cf1c47a07c

Fixed

87ceaa199a72c5856d49a030941fabcd5c3928d4

Fixed

fa7cdcf9b28d13aac1eeb34b948db8a18e041341

Fixed

0db232765887d9807df8bcb7b6f29b2871539eab

Affected versions

v5.*

v5.10

v5.10-rc1

v5.10-rc2

v5.10-rc3

v5.10-rc4

v5.10-rc5

v5.10-rc6

v5.10-rc7

v5.10.1

v5.10.10

v5.10.100

v5.10.101

v5.10.102

v5.10.103

v5.10.104

v5.10.105

v5.10.106

v5.10.107

v5.10.108

v5.10.109

v5.10.11

v5.10.110

v5.10.111

v5.10.112

v5.10.113

v5.10.114

v5.10.115

v5.10.116

v5.10.117

v5.10.118

v5.10.119

v5.10.12

v5.10.120

v5.10.121

v5.10.122

v5.10.123

v5.10.124

v5.10.125

v5.10.126

v5.10.127

v5.10.128

v5.10.129

v5.10.13

v5.10.130

v5.10.131

v5.10.132

v5.10.133

v5.10.14

v5.10.15

v5.10.16

v5.10.17

v5.10.18

v5.10.19

v5.10.2

v5.10.20

v5.10.21

v5.10.22

v5.10.23

v5.10.24

v5.10.25

v5.10.26

v5.10.27

v5.10.28

v5.10.29

v5.10.3

v5.10.30

v5.10.31

v5.10.32

v5.10.33

v5.10.34

v5.10.35

v5.10.36

v5.10.37

v5.10.38

v5.10.39

v5.10.4

v5.10.40

v5.10.41

v5.10.42

v5.10.43

v5.10.44

v5.10.45

v5.10.46

v5.10.47

v5.10.48

v5.10.49

v5.10.5

v5.10.50

v5.10.51

v5.10.52

v5.10.53

v5.10.54

v5.10.55

v5.10.56

v5.10.57

v5.10.58

v5.10.59

v5.10.6

v5.10.60

v5.10.61

v5.10.62

v5.10.63

v5.10.64

v5.10.65

v5.10.66

v5.10.67

v5.10.68

v5.10.69

v5.10.7

v5.10.70

v5.10.71

v5.10.72

v5.10.73

v5.10.74

v5.10.75

v5.10.76

v5.10.77

v5.10.78

v5.10.79

v5.10.8

v5.10.80

v5.10.81

v5.10.82

v5.10.83

v5.10.84

v5.10.85

v5.10.86

v5.10.87

v5.10.88

v5.10.89

v5.10.9

v5.10.90

v5.10.91

v5.10.92

v5.10.93

v5.10.94

v5.10.95

v5.10.96

v5.10.97

v5.10.98

v5.10.99

v5.11

v5.11-rc1

v5.11-rc2

v5.11-rc3

v5.11-rc4

v5.11-rc5

v5.11-rc6

v5.11-rc7

v5.12

v5.12-rc1

v5.12-rc1-dontuse

v5.12-rc2

v5.12-rc3

v5.12-rc4

v5.12-rc5

v5.12-rc6

v5.12-rc7

v5.12-rc8

v5.13

v5.13-rc1

v5.13-rc2

v5.13-rc3

v5.13-rc4

v5.13-rc5

v5.13-rc6

v5.13-rc7

v5.14

v5.14-rc1

v5.14-rc2

v5.14-rc3

v5.14-rc4

v5.14-rc5

v5.14-rc6

v5.14-rc7

v5.15

v5.15-rc1

v5.15-rc2

v5.15-rc3

v5.15-rc4

v5.15-rc5

v5.15-rc6

v5.15-rc7

v5.15.1

v5.15.10

v5.15.11

v5.15.12

v5.15.13

v5.15.14

v5.15.15

v5.15.16

v5.15.17

v5.15.18

v5.15.19

v5.15.2

v5.15.20

v5.15.21

v5.15.22

v5.15.23

v5.15.24

v5.15.25

v5.15.26

v5.15.27

v5.15.28

v5.15.29

v5.15.3

v5.15.30

v5.15.31

v5.15.32

v5.15.33

v5.15.34

v5.15.35

v5.15.36

v5.15.37

v5.15.38

v5.15.39

v5.15.4

v5.15.40

v5.15.41

v5.15.42

v5.15.43

v5.15.44

v5.15.45

v5.15.46

v5.15.47

v5.15.48

v5.15.49

v5.15.5

v5.15.50

v5.15.51

v5.15.52

v5.15.53

v5.15.54

v5.15.55

v5.15.56

v5.15.57

v5.15.6

v5.15.7

v5.15.8

v5.15.9

v5.16

v5.16-rc1

v5.16-rc2

v5.16-rc3

v5.16-rc4

v5.16-rc5

v5.16-rc6

v5.16-rc7

v5.16-rc8

v5.17

v5.17-rc1

v5.17-rc2

v5.17-rc3

v5.17-rc4

v5.17-rc5

v5.17-rc6

v5.17-rc7

v5.17-rc8

v5.18

v5.18-rc1

v5.18-rc2

v5.18-rc3

v5.18-rc4

v5.18-rc5

v5.18-rc6

v5.18-rc7

v5.18.1

v5.18.10

v5.18.11

v5.18.12

v5.18.13

v5.18.14

v5.18.2

v5.18.3

v5.18.4

v5.18.5

v5.18.6

v5.18.7

v5.18.8

v5.18.9

v5.19-rc1

v5.19-rc2

v5.19-rc3

v5.19-rc4

v5.19-rc5

v5.19-rc6

v5.6

v5.6-rc4

v5.6-rc5

v5.6-rc6

v5.6-rc7

v5.7

v5.7-rc1

v5.7-rc2

v5.7-rc3

v5.7-rc4

v5.7-rc5

v5.7-rc6

v5.7-rc7

v5.8

v5.8-rc1

v5.8-rc2

v5.8-rc3

v5.8-rc4

v5.8-rc5

v5.8-rc6

v5.8-rc7

v5.9

v5.9-rc1

v5.9-rc2

v5.9-rc3

v5.9-rc4

v5.9-rc5

v5.9-rc6

v5.9-rc7

v5.9-rc8

Database specific

vanir_signatures

[
    {
        "signature_type": "Function",
        "signature_version": "v1",
        "target": {
            "file": "net/ipv4/inet_connection_sock.c",
            "function": "inet_csk_find_open_port"
        },
        "id": "CVE-2022-49600-1bf8151a",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0db232765887d9807df8bcb7b6f29b2871539eab",
        "digest": {
            "function_hash": "189270334892551979074692716810754933239",
            "length": 1541.0
        }
    },
    {
        "signature_type": "Function",
        "signature_version": "v1",
        "target": {
            "file": "net/ipv4/inet_connection_sock.c",
            "function": "inet_csk_find_open_port"
        },
        "id": "CVE-2022-49600-59133655",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87ceaa199a72c5856d49a030941fabcd5c3928d4",
        "digest": {
            "function_hash": "189270334892551979074692716810754933239",
            "length": 1541.0
        }
    },
    {
        "signature_type": "Line",
        "signature_version": "v1",
        "target": {
            "file": "net/ipv4/inet_connection_sock.c"
        },
        "id": "CVE-2022-49600-5fc86f4b",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87ceaa199a72c5856d49a030941fabcd5c3928d4",
        "digest": {
            "line_hashes": [
                "299157787616315756658265019447827480068",
                "202695080205590764925712132559626708902",
                "23763212907824145940604854228457077636",
                "101774548372146451432774959014696924288"
            ],
            "threshold": 0.9
        }
    },
    {
        "signature_type": "Line",
        "signature_version": "v1",
        "target": {
            "file": "net/ipv4/inet_connection_sock.c"
        },
        "id": "CVE-2022-49600-992ea326",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@611ba70e5aca252ef43374dda97ed4cf1c47a07c",
        "digest": {
            "line_hashes": [
                "299157787616315756658265019447827480068",
                "202695080205590764925712132559626708902",
                "23763212907824145940604854228457077636",
                "101774548372146451432774959014696924288"
            ],
            "threshold": 0.9
        }
    },
    {
        "signature_type": "Line",
        "signature_version": "v1",
        "target": {
            "file": "net/ipv4/inet_connection_sock.c"
        },
        "id": "CVE-2022-49600-add3a4bf",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fa7cdcf9b28d13aac1eeb34b948db8a18e041341",
        "digest": {
            "line_hashes": [
                "299157787616315756658265019447827480068",
                "202695080205590764925712132559626708902",
                "23763212907824145940604854228457077636",
                "101774548372146451432774959014696924288"
            ],
            "threshold": 0.9
        }
    },
    {
        "signature_type": "Function",
        "signature_version": "v1",
        "target": {
            "file": "net/ipv4/inet_connection_sock.c",
            "function": "inet_csk_find_open_port"
        },
        "id": "CVE-2022-49600-b04135c1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@611ba70e5aca252ef43374dda97ed4cf1c47a07c",
        "digest": {
            "function_hash": "189270334892551979074692716810754933239",
            "length": 1541.0
        }
    },
    {
        "signature_type": "Function",
        "signature_version": "v1",
        "target": {
            "file": "net/ipv4/inet_connection_sock.c",
            "function": "inet_csk_find_open_port"
        },
        "id": "CVE-2022-49600-d12387b8",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@fa7cdcf9b28d13aac1eeb34b948db8a18e041341",
        "digest": {
            "function_hash": "189270334892551979074692716810754933239",
            "length": 1541.0
        }
    },
    {
        "signature_type": "Line",
        "signature_version": "v1",
        "target": {
            "file": "net/ipv4/inet_connection_sock.c"
        },
        "id": "CVE-2022-49600-d829eefa",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0db232765887d9807df8bcb7b6f29b2871539eab",
        "digest": {
            "line_hashes": [
                "299157787616315756658265019447827480068",
                "202695080205590764925712132559626708902",
                "23763212907824145940604854228457077636",
                "101774548372146451432774959014696924288"
            ],
            "threshold": 0.9
        }
    }
]

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49600.json"