In the Linux kernel, the following vulnerability has been resolved:
nexthop: Fix data-races around nexthopcompatmode.
While reading nexthopcompatmode, it can be changed concurrently. Thus, we need to add READ_ONCE() to its readers.
{ "vanir_signatures": [ { "digest": { "length": 4245.0, "function_hash": "171421220050724451005341058875687596005" }, "target": { "function": "rt6_fill_node", "file": "net/ipv6/route.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a51040d4b120f3520df64fb0b9c63b31d69bea9b", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-078f8836" }, { "digest": { "length": 2272.0, "function_hash": "85196264694198295012493687606521996859" }, "target": { "function": "fib_dump_info", "file": "net/ipv4/fib_semantics.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ae3054f6fbccc90f14ecd6cf9b2c09a2401c64fd", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-0af4998a" }, { "digest": { "length": 440.0, "function_hash": "58172709530043155937567004272518758000" }, "target": { "function": "__remove_nexthop_fib", "file": "net/ipv4/nexthop.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ae3054f6fbccc90f14ecd6cf9b2c09a2401c64fd", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-151deaf9" }, { "digest": { "line_hashes": [ "312850766508924898484920606251438535562", "69387967483250707370293953785461081613", "211456181674493895341077675366049920055", "177018701058907900023231398647531518330", "145224466893887800334032801411824824385", "236294777010550588554753441969832268350", "113885715751555972997809803649437868104", "125634441906028780615735303915758294045" ], "threshold": 0.9 }, "target": { "file": "net/ipv4/nexthop.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ae3054f6fbccc90f14ecd6cf9b2c09a2401c64fd", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-1bde2c98" }, { "digest": { "line_hashes": [ "31311571141780061399372805573122246922", "244916379881520883722904117981151687418", "176931739328637825939810505444468359744", "14364602158549086040637189795010259330" ], "threshold": 0.9 }, "target": { "file": "net/ipv6/route.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0d17723afea3ae8c9f245c9bbd2ba5945b77e812", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-1d4a8723" }, { "digest": { "line_hashes": [ "201310386640512525289554275743456134598", "284674301528169372568871456316072729290", "131376873881432169704278301636191064301", "167935410272110404486855135646090798723" ], "threshold": 0.9 }, "target": { "file": "net/ipv4/fib_semantics.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0d17723afea3ae8c9f245c9bbd2ba5945b77e812", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-280bc59f" }, { "digest": { "length": 1192.0, "function_hash": "258139049260085355881561603814426217502" }, "target": { "function": "insert_nexthop", "file": "net/ipv4/nexthop.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a51040d4b120f3520df64fb0b9c63b31d69bea9b", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-2871ccce" }, { "digest": { "length": 1703.0, "function_hash": "193680905582047273145076020299205694859" }, "target": { "function": "insert_nexthop", "file": "net/ipv4/nexthop.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0d17723afea3ae8c9f245c9bbd2ba5945b77e812", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-302cf299" }, { "digest": { "line_hashes": [ "31311571141780061399372805573122246922", "244916379881520883722904117981151687418", "176931739328637825939810505444468359744", "14364602158549086040637189795010259330" ], "threshold": 0.9 }, "target": { "file": "net/ipv6/route.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bdf00bf24bef9be1ca641a6390fd5487873e0d2e", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-3318bc2d" }, { "digest": { "line_hashes": [ "31311571141780061399372805573122246922", "244916379881520883722904117981151687418", "176931739328637825939810505444468359744", "14364602158549086040637189795010259330" ], "threshold": 0.9 }, "target": { "file": "net/ipv6/route.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ae3054f6fbccc90f14ecd6cf9b2c09a2401c64fd", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-37499263" }, { "digest": { "length": 440.0, "function_hash": "58172709530043155937567004272518758000" }, "target": { "function": "__remove_nexthop_fib", "file": "net/ipv4/nexthop.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0d17723afea3ae8c9f245c9bbd2ba5945b77e812", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-405b1eca" }, { "digest": { "line_hashes": [ "31311571141780061399372805573122246922", "244916379881520883722904117981151687418", "176931739328637825939810505444468359744", "14364602158549086040637189795010259330" ], "threshold": 0.9 }, "target": { "file": "net/ipv6/route.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a51040d4b120f3520df64fb0b9c63b31d69bea9b", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-40e63a55" }, { "digest": { "length": 1703.0, "function_hash": "193680905582047273145076020299205694859" }, "target": { "function": "insert_nexthop", "file": "net/ipv4/nexthop.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bdf00bf24bef9be1ca641a6390fd5487873e0d2e", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-4176fb8b" }, { "digest": { "line_hashes": [ "312850766508924898484920606251438535562", "69387967483250707370293953785461081613", "211456181674493895341077675366049920055", "177018701058907900023231398647531518330", "145224466893887800334032801411824824385", "236294777010550588554753441969832268350", "113885715751555972997809803649437868104", "125634441906028780615735303915758294045" ], "threshold": 0.9 }, "target": { "file": "net/ipv4/nexthop.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0d17723afea3ae8c9f245c9bbd2ba5945b77e812", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-467dca3a" }, { "digest": { "line_hashes": [ "201310386640512525289554275743456134598", "284674301528169372568871456316072729290", "131376873881432169704278301636191064301", "167935410272110404486855135646090798723" ], "threshold": 0.9 }, "target": { "file": "net/ipv4/fib_semantics.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bdf00bf24bef9be1ca641a6390fd5487873e0d2e", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-496e8637" }, { "digest": { "length": 4481.0, "function_hash": "2770666345357129489347499172736471249" }, "target": { "function": "rt6_fill_node", "file": "net/ipv6/route.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0d17723afea3ae8c9f245c9bbd2ba5945b77e812", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-6fa0a99e" }, { "digest": { "length": 1703.0, "function_hash": "193680905582047273145076020299205694859" }, "target": { "function": "insert_nexthop", "file": "net/ipv4/nexthop.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ae3054f6fbccc90f14ecd6cf9b2c09a2401c64fd", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-84b70bc8" }, { "digest": { "length": 2286.0, "function_hash": "162916351970850499514527104021258600224" }, "target": { "function": "fib_dump_info", "file": "net/ipv4/fib_semantics.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bdf00bf24bef9be1ca641a6390fd5487873e0d2e", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-8f243097" }, { "digest": { "length": 440.0, "function_hash": "58172709530043155937567004272518758000" }, "target": { "function": "__remove_nexthop_fib", "file": "net/ipv4/nexthop.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a51040d4b120f3520df64fb0b9c63b31d69bea9b", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-90e74dc4" }, { "digest": { "length": 4481.0, "function_hash": "2770666345357129489347499172736471249" }, "target": { "function": "rt6_fill_node", "file": "net/ipv6/route.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bdf00bf24bef9be1ca641a6390fd5487873e0d2e", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-9ff35ccd" }, { "digest": { "line_hashes": [ "201310386640512525289554275743456134598", "284674301528169372568871456316072729290", "131376873881432169704278301636191064301", "167935410272110404486855135646090798723" ], "threshold": 0.9 }, "target": { "file": "net/ipv4/fib_semantics.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ae3054f6fbccc90f14ecd6cf9b2c09a2401c64fd", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-a518d42b" }, { "digest": { "line_hashes": [ "312850766508924898484920606251438535562", "69387967483250707370293953785461081613", "211456181674493895341077675366049920055", "177018701058907900023231398647531518330", "145224466893887800334032801411824824385", "236294777010550588554753441969832268350", "113885715751555972997809803649437868104", "125634441906028780615735303915758294045" ], "threshold": 0.9 }, "target": { "file": "net/ipv4/nexthop.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a51040d4b120f3520df64fb0b9c63b31d69bea9b", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-af1f5bd6" }, { "digest": { "length": 2192.0, "function_hash": "259824032878471834935438914868939568455" }, "target": { "function": "fib_dump_info", "file": "net/ipv4/fib_semantics.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a51040d4b120f3520df64fb0b9c63b31d69bea9b", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-baca4791" }, { "digest": { "length": 4481.0, "function_hash": "2770666345357129489347499172736471249" }, "target": { "function": "rt6_fill_node", "file": "net/ipv6/route.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ae3054f6fbccc90f14ecd6cf9b2c09a2401c64fd", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-cf3fd5b4" }, { "digest": { "line_hashes": [ "312850766508924898484920606251438535562", "69387967483250707370293953785461081613", "211456181674493895341077675366049920055", "177018701058907900023231398647531518330", "145224466893887800334032801411824824385", "236294777010550588554753441969832268350", "113885715751555972997809803649437868104", "125634441906028780615735303915758294045" ], "threshold": 0.9 }, "target": { "file": "net/ipv4/nexthop.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bdf00bf24bef9be1ca641a6390fd5487873e0d2e", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-d59be3a8" }, { "digest": { "length": 2272.0, "function_hash": "85196264694198295012493687606521996859" }, "target": { "function": "fib_dump_info", "file": "net/ipv4/fib_semantics.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0d17723afea3ae8c9f245c9bbd2ba5945b77e812", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-deeaf573" }, { "digest": { "length": 440.0, "function_hash": "58172709530043155937567004272518758000" }, "target": { "function": "__remove_nexthop_fib", "file": "net/ipv4/nexthop.c" }, "signature_type": "Function", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bdf00bf24bef9be1ca641a6390fd5487873e0d2e", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-ecf0d97a" }, { "digest": { "line_hashes": [ "201310386640512525289554275743456134598", "284674301528169372568871456316072729290", "131376873881432169704278301636191064301", "167935410272110404486855135646090798723" ], "threshold": 0.9 }, "target": { "file": "net/ipv4/fib_semantics.c" }, "signature_type": "Line", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a51040d4b120f3520df64fb0b9c63b31d69bea9b", "deprecated": false, "signature_version": "v1", "id": "CVE-2022-49629-ef0e580b" } ] }