CVE-2022-50286

MEDIUM EPSS 4.2%
Published Sep 15, 20259mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Sep 15, 2025 9mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ext4: fix delayed allocation bug in ext4_clu_mapped for bigalloc + inline When converting files with inline data to extents, delayed allocations made on a file system created with both the bigalloc and inline options can result in invalid extent status cache content, incorrect reserved cluster counts, kernel memory leaks, and potential kernel panics. With bigalloc, the code that determines whether a block must be delayed allocated searches the extent tree to see if that block maps to a previously allocated cluster. If not, the block is delayed allocated, and otherwise, it isn't. However, if the inline option is also used, and if the file containing the block is marked as able to store data inline, there isn't a valid extent tree associated with the file. The current code in ext4_clu_mapped() calls ext4_find_extent() to search the non-existent tree for a previously allocated cluster anyway, which typically finds nothing, as desired. However, a side effect of the search can be to cache invalid content from the non-existent tree (garbage) in the extent status tree, including bogus entries in the pending reservation tree. To fix this, avoid searching the extent tree when allocating blocks for bigalloc + inline files that are being converted from inline to extent mapped.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
4.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 5

VendorProductVersionRange
linuxlinux_kernel* <5.4.229
linuxlinux_kernel*≥5.5  –  <5.10.163
linuxlinux_kernel*≥5.11  –  <5.15.87
linuxlinux_kernel*≥5.16  –  <6.0.18
linuxlinux_kernel*≥6.1  –  <6.1.4

References 7

  • git.kernel.org https://git.kernel.org/stable/c/131294c35ed6f777bd4e79d42af13b5c41bf2775
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6f4200ec76a0d31200c308ec5a71c68df5417004
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/81b915181c630ee1cffa052e52874fe4e1ba91ac
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9404839e0c9db5a517ea83c0ca3388b39d105fdf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c0c8edbc8abbe8f16d80a1d794d1ba2c12b6f193
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d440d6427a5e3a877c1c259b8d2b216ddb65e185
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f83391339d8493b9ff24167516aaa5a5e88d8f81

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/131294c35ed6f777bd4e79d42af13b5c41bf2775
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6f4200ec76a0d31200c308ec5a71c68df5417004
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/81b915181c630ee1cffa052e52874fe4e1ba91ac
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9404839e0c9db5a517ea83c0ca3388b39d105fdf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c0c8edbc8abbe8f16d80a1d794d1ba2c12b6f193
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d440d6427a5e3a877c1c259b8d2b216ddb65e185
    Patch