CVE-2022-50764
Unknown Unknown - Not Provided
Data Race in Linux Kernel IPv6 SIT Tunnels Causing Stats Corruption

Publication date: 2025-12-24

Last updated on: 2025-12-24

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: ipv6/sit: use DEV_STATS_INC() to avoid data-races syzbot/KCSAN reported that multiple cpus are updating dev->stats.tx_error concurrently. This is because sit tunnels are NETIF_F_LLTX, meaning their ndo_start_xmit() is not protected by a spinlock. While original KCSAN report was about tx path, rx path has the same issue.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-24
Last Modified
2025-12-24
Generated
2026-06-16
AI Q&A
2025-12-24
EPSS Evaluated
2026-06-15
NVD
CVE-2022-50764
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability in the Linux kernel involves a data race condition where multiple CPUs concurrently update the dev->stats.tx_error field in IPv6 sit tunnels. The issue arises because sit tunnels are marked as NETIF_F_LLTX, so their ndo_start_xmit() function is not protected by a spinlock, leading to unsafe concurrent updates on both transmit (tx) and receive (rx) paths.

Impact Analysis

The vulnerability can lead to data races causing inconsistent or corrupted network statistics in the Linux kernel's IPv6 sit tunnels. This may affect network reliability or monitoring accuracy, potentially leading to incorrect error reporting or network behavior under concurrent CPU usage.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2022-50764. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart