CVE-2022-50022

HIGH EPSS 11.3%
Published Jun 18, 20251y ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Jun 18, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: drivers:md:fix a potential use-after-free bug In line 2884, "raid5_release_stripe(sh);" drops the reference to sh and may cause sh to be released. However, sh is subsequently used in lines 2886 "if (sh->batch_head && sh != sh->batch_head)". This may result in an use-after-free bug. It can be fixed by moving "raid5_release_stripe(sh);" to the bottom of the function.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
11.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥4.1  –  <4.9.326
linuxlinux_kernel*≥4.10  –  <4.14.291
linuxlinux_kernel*≥4.15  –  <4.19.256
linuxlinux_kernel*≥4.20  –  <5.4.211
linuxlinux_kernel*≥5.5  –  <5.10.138
linuxlinux_kernel*≥5.11  –  <5.15.63
linuxlinux_kernel*≥5.16  –  <5.19.4

References 8

  • git.kernel.org https://git.kernel.org/stable/c/09cf99bace7789d91caa8d10fbcfc8b2fb35857f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/104212471b1c1817b311771d817fb692af983173
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5d8325fd15892c8ab1146edc1d7ed8463de39636
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7470a4314b239e9a9580f248fdf4c9a92805490e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d9b94c3ace549433de8a93eeb27b0391fc8ac406
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e5b3dd2d92c4511e81f6e4ec9c5bb7ad25e03d13
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/eb3a4f73f43f839df981dda5859e8e075067a360
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f5d46f1b47f65da1faf468277b261eb78c8e25b5
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/09cf99bace7789d91caa8d10fbcfc8b2fb35857f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/104212471b1c1817b311771d817fb692af983173
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5d8325fd15892c8ab1146edc1d7ed8463de39636
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7470a4314b239e9a9580f248fdf4c9a92805490e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d9b94c3ace549433de8a93eeb27b0391fc8ac406
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e5b3dd2d92c4511e81f6e4ec9c5bb7ad25e03d13
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/eb3a4f73f43f839df981dda5859e8e075067a360
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f5d46f1b47f65da1faf468277b261eb78c8e25b5
    Patch