CVE-2022-50555

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw in the tipc topsrv accept function that can lead to a null pointer dereference. This issue was discovered by syzbot during testing. The root cause is that the srv->listener pointer might be set to null by tipc topsrv stop() while still being used in tipc topsrv accept(). The fix involves adding a check for srv->listener under srv->idr lock within tipc topsrv accept() to prevent the dereference. Additionally, the sock release() function is moved to after tipc topsrv work stop() to ensure the listener socket is not released prematurely. The fix also includes a check for srv in tipc topsrv listener data ready().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.