CVE-2022-49607

Public on 2025-02-26
Modified on 2025-03-28
Description

In the Linux kernel, the following vulnerability has been resolved:

perf/core: Fix data race between perf_event_set_output() and perf_mmap_close()

Severity
Medium
See what this means
CVSS v3 Base Score
4.7
See breakdown

Affected Packages

Platform Package Release Date Advisory
Amazon Linux 2 - Core kernel 2025-03-06 ALAS2-2025-2790
Amazon Linux 2 - Kernel-5.10 Extra kernel 2025-03-26 ALAS2KERNEL-5.10-2025-086
Amazon Linux 2 - Kernel-5.15 Extra kernel 2025-07-10 ALAS2KERNEL-5.15-2025-083
Amazon Linux 2 - Kernel-5.15 Extra kernel 2022-09-12 ALAS2KERNEL-5.15-2022-007
Amazon Linux 2 - Kernel-5.4 Extra kernel 2022-08-18 ALAS2KERNEL-5.4-2022-034

CVSS Scores

Score Type Score Vector
Amazon Linux CVSSv3 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
NVD CVSSv3 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

References

FAQs regarding Amazon Linux ALAS/CVE Severity Red Hat: CVE-2022-49607 Mitre: CVE-2022-49607