CVE-2022-50782

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel related to ext4 quota handling. Specifically, a bug in the es tree search function can occur due to a bad quota inode. This issue arises when the inode number 5, which is reserved for the boot loader, contains an incorrect inode mode and disordered extents. This bypasses a check within the ext4 iget function, leading to unchecked extents triggering a bug in the es tree search function. The issue can be traced through a series of function calls starting from ext4 fill super and involving quota-related functions like ext4 enable quotas, dquot load quota inode, and v2 check quota file.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.