CVE-2022-50057

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.18.0-rc3-syzkaller-00016-gb253435746d9

Description A NULL pointer dereference issue has been identified in the Linux kernel, specifically in the fs/ntfs3 component. This issue occurs when the ntfs fill super() function is not called, resulting in a NULL pointer being dereferenced. The problem can be triggered by passing incorrect mount parameters, as demonstrated by a Syzbot test. The issue leads to a general protection fault and a null-ptr-deref error.

Recommendations For Linux kernel versions prior to 5.18.0-rc3-syzkaller-00016-gb253435746d9, consider updating to a newer version that includes the fix for the NULL pointer dereference issue in the fs/ntfs3 component. As a temporary workaround, avoid passing incorrect mount parameters to prevent triggering the issue.