Linux Kernel TCP Data-Race Vulnerability in sysctl_tcp_l3mdev_accept

A data-race vulnerability has been identified in the Linux kernel's TCP implementation, specifically around the sysctl_tcp_l3mdev_accept parameter. This vulnerability arises because the parameter can be modified concurrently while it is being read, leading to potential inconsistencies. To address this issue, the kernel has been updated to include a READ_ONCE() directive for readers of this parameter, ensuring safer access and preventing concurrent modification issues.

Impact

Exploitation of this vulnerability could lead to inconsistent reads of the sysctl_tcp_l3mdev_accept parameter, potentially causing unexpected behavior in TCP networking.