CVE-2022-50487

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel's Network File System Daemon (NFSD) related to handling RPC calls in NFSv3 READDIR operations. The issue stems from a potential send buffer overflow that can occur when a client sends a large RPC Call header over TCP. This can lead to a shrinkage of the send buffer, potentially causing issues with constructing the RPC Reply. The vulnerability arises from the way NFSD conserves memory by combining RPC receive and send buffers.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CESA-2023_0832

CESA-2023_2951

CVE-2022-50487

RHSA-2023:0832

RHSA-2023:2458

RHSA-2023:2951

RHSA-2023_0832

RHSA-2023_2458

RHSA-2023_2951

SUSE-SU-2025:4111-1

SUSE-SU-2025:4135-1

SUSE-SU-2025:4139-1

SUSE-SU-2025:4149-1

SUSE-SU-2025:4188-1

SUSE-SU-2025:4189-1

SUSE-SU-2025:4320-1

Affected Products

Centos

Linux Kernel

Red Hat

Suse

CVE-2022-50487

Related Identifiers

Affected Products

References · 620