CVE-2022-50137

HIGH EPSS 10.9%
Published Jun 18, 20251y ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Jun 18, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix a window for use-after-free During a destroy CQ an interrupt may cause processing of a CQE after CQ resources are freed by irdma_cq_free_rsrc(). Fix this by moving the call to irdma_cq_free_rsrc() after the irdma_sc_cleanup_ceqes(), which is called under the cq_lock.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
10.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 3

VendorProductVersionRange
linuxlinux_kernel*≥5.14  –  <5.15.61
linuxlinux_kernel*≥5.16  –  <5.18.18
linuxlinux_kernel*≥5.19  –  <5.19.2

References 4

  • git.kernel.org https://git.kernel.org/stable/c/0abf2eef80295923b819ce89ff9edc1fe61be17c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/350ac793a03c8a30a3f2b27fc282cd1c67070763
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8ecef7890b3aea78c8bbb501a4b5b8134367b821
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/92520864ef9f912f38b403d172a0ded020683d55
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0abf2eef80295923b819ce89ff9edc1fe61be17c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/350ac793a03c8a30a3f2b27fc282cd1c67070763
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8ecef7890b3aea78c8bbb501a4b5b8134367b821
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/92520864ef9f912f38b403d172a0ded020683d55
    Patch