PT-2025-37585 · Linux+1 · Linux Kernel+1
Published
2025-09-15
·
Updated
2025-09-15
·
CVE-2022-50283
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.0.0-rc7-next-20220930-04543-g8cf3f7
Description
A flaw was discovered in the Linux kernel's mtd core code related to dynamic partitions. The vulnerability is due to a missing
of node get() call, leading to an unbalanced of node put() and a potential use-after-free condition. This can result in a kernel panic.Recommendations
Update to Linux kernel version 6.0.0-rc7-next-20220930-04543-g8cf3f7 or a later version that includes the fix.
Exploit
Fix
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Astra Linux
Linux Kernel