CVE-2022-50459

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s iSCSI over TCP implementation. Specifically, a NULL pointer dereference can occur during socket access when freeing the socket concurrently with accessing it through sysfs. This happens because the sock->ops can become NULL after a sockfd put() operation in iscsi sw tcp release conn(), and subsequent calls to kernel getpeername() in iscsi sw tcp conn get param() and iscsi sw tcp host get param() attempt to access this NULL pointer. The issue arose from changes made to avoid holding a spinlock while calling getpeername(), leading to a need for refcount-based access, which was then simplified to use a mutex for socket access in the interface code paths.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.