suse · CVE-2022-49574

Quick triage

Priority: medium Published: 2025-02-27 00:30:55 UTC Updated: 2025-12-23 02:35:07 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2022-49574 severity moderate: SUSE including 53 source package names (bpftool-7.0.0-284.11.1.el9_2, cluster-md-kmp-default, …), 274 product×package rows across 48 product lines (SLES-LTSS-TERADATA 15 SP2, SUSE Liberty Linux 9, … (48 product lines)): Will Not Fix 141, Known Not Affected 106, Fixed 27.

Description:

In the Linux kernel, the following vulnerability has been resolved: tcp: Fix data-races around sysctl_tcp_recovery. While reading sysctl_tcp_recovery, it can be changed concurrently. Thus, we need to add READ_ONCE() to its readers.

cvelogic Threat Intelligence