CVE-2022-49903

ipv6: fix WARNING in ip6_route_net_exit_late()

Description

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix WARNING in ip6_route_net_exit_late() During the initialization of ip6_route_net_init_late(), if file ipv6_route or rt6_stats fails to be created, the initialization is successful by default. Therefore, the ipv6_route or rt6_stats file doesn't be found during the remove in ip6_route_net_exit_late(). It will cause WRNING. The following is the stack information: name 'rt6_stats' WARNING: CPU: 0 PID: 9 at fs/proc/generic.c:712 remove_proc_entry+0x389/0x460 Modules linked in: Workqueue: netns cleanup_net RIP: 0010:remove_proc_entry+0x389/0x460 PKRU: 55555554 Call Trace: <TASK> ops_exit_list+0xb0/0x170 cleanup_net+0x4ea/0xb00 process_one_work+0x9bf/0x1710 worker_thread+0x665/0x1080 kthread+0x2e4/0x3a0 ret_from_fork+0x1f/0x30 </TASK>

N/A
CVSS
Severity:
EPSS 0.03%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/83fbf246ced54dadd7b9adc2a16efeff30ba944d
https://git.kernel.org/stable/c/381453770f731f0f43616a1cd4c759b7807a1517
https://git.kernel.org/stable/c/5dbb47ee89762da433cd8458788d7640c85f1a07
https://git.kernel.org/stable/c/0ed71af4d017d2bd2cbb8f7254f613a4914def26
https://git.kernel.org/stable/c/080589287127838046077904f34d5054ea0f895c
https://git.kernel.org/stable/c/768b3c745fe5789f2430bdab02f35a9ad1148d97

Frequently Asked Questions

What is the severity of CVE-2022-49903?
CVE-2022-49903 has not yet been assigned a CVSS score.
How to fix CVE-2022-49903?
To fix CVE-2022-49903, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-49903 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2022-49903 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-49903?
CVE-2022-49903 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.