CVE-2022-50098
MEDIUM EPSS 10.3%
Published Jun 18, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Published Jun 18, 2025 1y ago
Last Modified Jun 17, 2026 1w ago
Description
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts Ensure SRB is returned during I/O timeout error escalation. If that is not possible fail the escalation path. Following crash stack was seen: BUG: unable to handle kernel paging request at 0000002f56aa90f8 IP: qla_chk_edif_rx_sa_delete_pending+0x14/0x30 [qla2xxx] Call Trace: ? qla2x00_status_entry+0x19f/0x1c50 [qla2xxx] ? qla2x00_start_sp+0x116/0x1170 [qla2xxx] ? dma_pool_alloc+0x1d6/0x210 ? mempool_alloc+0x54/0x130 ? qla24xx_process_response_queue+0x548/0x12b0 [qla2xxx] ? qla_do_work+0x2d/0x40 [qla2xxx] ? process_one_work+0x14c/0x390
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High
Threat Intelligence
EPSS Exploit Probability
10.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 3
References 4
- git.kernel.org https://git.kernel.org/stable/c/7dcd49c42b14717dd668fd73b503d241fdf82439
- git.kernel.org https://git.kernel.org/stable/c/b70553175d0f94ebd73670bc16ade90bd7f7d76f
- git.kernel.org https://git.kernel.org/stable/c/b7bae3886a30d258b5b4fee26647043d68da3661
- git.kernel.org https://git.kernel.org/stable/c/c39587bc0abaf16593f7abcdf8aeec3c038c7d52
Remediation
- git.kernel.org https://git.kernel.org/stable/c/7dcd49c42b14717dd668fd73b503d241fdf82439
- git.kernel.org https://git.kernel.org/stable/c/b70553175d0f94ebd73670bc16ade90bd7f7d76f
- git.kernel.org https://git.kernel.org/stable/c/b7bae3886a30d258b5b4fee26647043d68da3661
- git.kernel.org https://git.kernel.org/stable/c/c39587bc0abaf16593f7abcdf8aeec3c038c7d52