vulnerability
Ubuntu: (CVE-2022-49917): linux vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:S/C:N/I:N/A:C) | May 1, 2025 | May 6, 2025 | Jun 12, 2025 |
Description
In the Linux kernel, the following vulnerability has been resolved:
ipvs: fix WARNING in ip_vs_app_net_cleanup()
During the initialization of ip_vs_app_net_init(), if file ip_vs_app
fails to be created, the initialization is successful by default.
Therefore, the ip_vs_app file doesn't be found during the remove in
ip_vs_app_net_cleanup(). It will cause WRNING.
The following is the stack information:
name 'ip_vs_app'
WARNING: CPU: 1 PID: 9 at fs/proc/generic.c:712 remove_proc_entry+0x389/0x460
Modules linked in:
Workqueue: netns cleanup_net
RIP: 0010:remove_proc_entry+0x389/0x460
Call Trace:
ops_exit_list+0x125/0x170
cleanup_net+0x4ea/0xb00
process_one_work+0x9bf/0x1710
worker_thread+0x665/0x1080
kthread+0x2e4/0x3a0
ret_from_fork+0x1f/0x30
Solution(s)
References
- CVE-2022-49917
- https://attackerkb.com/topics/CVE-2022-49917
- URL-https://git.kernel.org/linus/5663ed63adb9619c98ab7479aa4606fa9b7a548c
- URL-https://git.kernel.org/stable/c/06d7596d18725f1a93cf817662d36050e5afb989
- URL-https://git.kernel.org/stable/c/2c8d81bdb2684d53d6cedad7410ba4cf9090e343
- URL-https://git.kernel.org/stable/c/5663ed63adb9619c98ab7479aa4606fa9b7a548c
- URL-https://git.kernel.org/stable/c/8457a00c981fe1a799ce34123908856b0f5973b8
- URL-https://git.kernel.org/stable/c/97f872b00937f2689bff2dab4ad9ed259482840f
- URL-https://git.kernel.org/stable/c/adc76740ccd52e4a1d910767cd1223e134a7078b
- URL-https://www.cve.org/CVERecord?id=CVE-2022-49917
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.