Detections
Analytics

CVE-2022-49903

medium

Description

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix WARNING in ip6_route_net_exit_late() During the initialization of ip6_route_net_init_late(), if file ipv6_route or rt6_stats fails to be created, the initialization is successful by default. Therefore, the ipv6_route or rt6_stats file doesn't be found during the remove in ip6_route_net_exit_late(). It will cause WRNING. The following is the stack information: name 'rt6_stats' WARNING: CPU: 0 PID: 9 at fs/proc/generic.c:712 remove_proc_entry+0x389/0x460 Modules linked in: Workqueue: netns cleanup_net RIP: 0010:remove_proc_entry+0x389/0x460 PKRU: 55555554 Call Trace: <TASK> ops_exit_list+0xb0/0x170 cleanup_net+0x4ea/0xb00 process_one_work+0x9bf/0x1710 worker_thread+0x665/0x1080 kthread+0x2e4/0x3a0 ret_from_fork+0x1f/0x30 </TASK>

References

https://git.kernel.org/stable/c/83fbf246ced54dadd7b9adc2a16efeff30ba944d

https://git.kernel.org/stable/c/768b3c745fe5789f2430bdab02f35a9ad1148d97

https://git.kernel.org/stable/c/5dbb47ee89762da433cd8458788d7640c85f1a07

https://git.kernel.org/stable/c/381453770f731f0f43616a1cd4c759b7807a1517

https://git.kernel.org/stable/c/0ed71af4d017d2bd2cbb8f7254f613a4914def26

https://git.kernel.org/stable/c/080589287127838046077904f34d5054ea0f895c

Details

Source: Mitre, NVD

Published: 2025-05-01

Updated: 2025-05-02

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00024