CVE-2022-50406

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.0.0-rc5-djwa #rc5 3004c9f1de887ebae86015f2677638ce51ee7

Description The Linux kernel contained a vulnerability in the iomap subsystem that could lead to memory corruption when recording errors during writeback. This issue was observed as a kernel NULL pointer dereference and Buffer I/O errors on devices like dm-0, potentially causing system crashes and data loss. The vulnerability occurs during writeback operations and can be triggered by errors encountered during I/O.

Recommendations Update the Linux kernel to a version newer than 6.0.0-rc5-djwa #rc5 3004c9f1de887ebae86015f2677638ce51ee7.

Exploit

Fix

DoS

Improper Resource Release

Memory Corruption

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404CWE-787CWE-476

Related Identifiers

BDU:2026-02285

CESA-2023_7077

CVE-2022-50406

RHSA-2023:6583

RHSA-2023:7077

RHSA-2023_6583

RHSA-2023_7077

RHSA-2025:21051

RHSA-2025:21091

RHSA-2025:21128

RHSA-2025:21136

RHSA-2025:22998

RHSA-2025:23463

SUSE-SU-2025:03614-1

SUSE-SU-2025:03615-1

SUSE-SU-2025:3761-1

Affected Products

Centos

Debian

Linux Kernel

Red Hat

Suse

CVE-2022-50406

Weakness Enumeration

Related Identifiers

Affected Products

References · 964