CVE-2022-50095

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue has been identified in the Linux kernel. The problem occurs when a non-leader thread calls execve, causing it to switch PIDs with the leader process. As a result, posix cpu timer del cannot find the task because the timer still points to the old PID, leading to armed timers not being disarmed and removed from the timerqueue list. This results in a use-after-free when the list is later processed. The issue has been resolved by cleaning up the timers from the de-threaded task before freeing them.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-459CWE-416

Related Identifiers

BDU:2026-02807

CVE-2022-50095

RHSA-2022:7318

RHSA-2022:8267

RHSA-2022_7318

RHSA-2022_8267

SUSE-SU-2025:02264-1

SUSE-SU-2025:02321-1

SUSE-SU-2025:02322-1

SUSE-SU-2025:02537-1

SUSE-SU-2025:2264-1

SUSE-SU-2025_02264-1

SUSE-SU-2025_02537-1

Affected Products

Astra Linux

Linux Kernel

Red Hat

Suse

CVE-2022-50095

Weakness Enumeration

Related Identifiers

Affected Products

References · 598