CVE-2022-50285

MEDIUM EPSS 4.3%
Published Sep 15, 20259mo ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Sep 15, 2025 9mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: mm,hugetlb: take hugetlb_lock before decrementing h->resv_huge_pages The h->*_huge_pages counters are protected by the hugetlb_lock, but alloc_huge_page has a corner case where it can decrement the counter outside of the lock. This could lead to a corrupted value of h->resv_huge_pages, which we have observed on our systems. Take the hugetlb_lock before decrementing h->resv_huge_pages to avoid a potential race.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
4.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 14

VendorProductVersionRange
linuxlinux_kernel*≥4.3.6  –  <4.4
linuxlinux_kernel*≥4.4.1  –  <4.9.332
linuxlinux_kernel*≥4.10  –  <4.14.298
linuxlinux_kernel*≥4.15  –  <4.19.264
linuxlinux_kernel*≥4.20  –  <5.4.223
linuxlinux_kernel*≥5.5  –  <5.10.153
linuxlinux_kernel*≥5.11  –  <5.15.76
linuxlinux_kernel*≥5.16  –  <6.0.6
linuxlinux_kernel4.4any
linuxlinux_kernel4.4any
linuxlinux_kernel4.4any
linuxlinux_kernel4.4any
linuxlinux_kernel4.4any
linuxlinux_kernel6.1any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/112a005d1ded04a4b41b6d01833cc0bda90625cc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/11993652d0b49e27272db0a37aa828d8a3a4b92b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/12df140f0bdfae5dcfc81800970dd7f6f632e00c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2b35432d324898ec41beb27031d2a1a864a4d40e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3e50a07b6a5fcd39df1534d3fdaca4292a65efe6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/568e3812b1778b4c0c229649b59977d88f400ece
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/629c986e19fe9481227c7cdfd9a105bbc104d245
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c828fab903725279aa9dc6ae3d44bb7e4778f92c
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/112a005d1ded04a4b41b6d01833cc0bda90625cc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/11993652d0b49e27272db0a37aa828d8a3a4b92b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/12df140f0bdfae5dcfc81800970dd7f6f632e00c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2b35432d324898ec41beb27031d2a1a864a4d40e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3e50a07b6a5fcd39df1534d3fdaca4292a65efe6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/568e3812b1778b4c0c229649b59977d88f400ece
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/629c986e19fe9481227c7cdfd9a105bbc104d245
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c828fab903725279aa9dc6ae3d44bb7e4778f92c
    Patch