Linux · Linux Kernel · CVE-2022-2978
**Name of the Vulnerable Software and Affected Versions**
Linux kernel NILFS file system (affected versions not specified)
**Description**
The issue is related to a use after free flaw in the Linux kernel NILFS file system. This flaw can be triggered when a user causes the `security inode alloc` function to fail, followed by a call to the `nilfs mdt destroy` function. A local user could exploit this issue to crash the system or potentially escalate their privileges. The exploitation may also allow an attacker to access confidential data, compromise their integrity, and cause a denial of service.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.