CVE-2022-50089

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.16.0-rc1+

Description A vulnerability in the Linux kernel has been resolved, related to the btrfs file system. The issue causes a hang when the cow file range() function fails during allocation, leaving pages locked. This occurs when the function is called with the unlock parameter set to 0 and allocation fails for one part of the split region. The vulnerability can lead to a hung task, as reported in a zoned btrfs setup. The estimated number of potentially affected devices is not specified.

Recommendations For Linux kernel versions prior to 5.16.0-rc1+, update to a newer version that includes the fix for this issue. As a temporary workaround, consider disabling the cow file range() function until a patch is available. Restrict access to the vulnerable btrfs module to minimize the risk of exploitation. Avoid using the do allocation zoned() function in the affected API endpoint until the issue is resolved.