Description

In the Linux kernel, the following vulnerability has been resolved: tcp: add accessors to read/set tp->snd_cwnd We had various bugs over the years with code breaking the assumption that tp->snd_cwnd is greater than zero. Lately, syzbot reported the WARN_ON_ONCE(!tp->prior_cwnd) added in commit 8b8a321ff72c ("tcp: fix zero cwnd in tcp_cwnd_reduction") can trigger, and without a repro we would have to spend considerable time finding the bug. Instead of complaining too late, we want to catch where and when tp->snd_cwnd is set to an illegal value.

INFO

Published Date :

2025-02-26T02:10:48.158Z

Last Modified :

2025-12-23T13:23:39.623Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-49325 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-49325.

URL Resource
https://git.kernel.org/stable/c/3308676ec525901bf1656014003c443a60730a04 cve-icon cve-icon
https://git.kernel.org/stable/c/40570375356c874b1578e05c1dcc3ff7c1322dbe cve-icon cve-icon
https://git.kernel.org/stable/c/41e191fe72282e193a7744e2fc1786b23156c9e4 cve-icon cve-icon
https://git.kernel.org/stable/c/5aba0ad44fb4a7fb78c5076c313456de199a3c29 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025022638-CVE-2022-49325-a2ac@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49325 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49325 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact