PT-2025-40724 · Linux+1 · Linux Kernel+1

Published

2025-10-04

Updated

2026-01-22

CVE-2022-50490

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the Linux kernel where an error from htab lock bucket() is not properly propagated to userspace. Specifically, in the htab map lookup and delete batch() function, if htab lock bucket() returns -EBUSY, the process continues to the next bucket, potentially skipping elements silently. This can also lead to out-of-bound memory access or exposure of kernel memory to userspace if the bucket count exceeds the bucket size or is zero. The fix involves stopping the batch operation and returning -EBUSY when htab lock bucket() fails, allowing the application to retry or skip the operation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

CVE-2022-50490

SUSE-SU-2025:4111-1

SUSE-SU-2025:4139-1

SUSE-SU-2025:4149-1

SUSE-SU-2025:4320-1

SUSE-SU-2026:0163-1

SUSE-SU-2026:0166-1

SUSE-SU-2026:0168-1

SUSE-SU-2026:0173-1

SUSE-SU-2026:0174-1

SUSE-SU-2026:0176-1

SUSE-SU-2026:0180-1

SUSE-SU-2026:0184-1

SUSE-SU-2026:0185-1

SUSE-SU-2026:0186-1

SUSE-SU-2026:0187-1

SUSE-SU-2026:0188-1

SUSE-SU-2026:0191-1

SUSE-SU-2026:0206-1

SUSE-SU-2026:0246-1

Affected Products

Linux Kernel

Suse

PT-2025-40724 · Linux+1 · Linux Kernel+1

CVE-2022-50490

Weakness Enumeration

Related Identifiers

Affected Products

References · 494