CVE-2022-50072

HIGH

Linux Kernel 4.19.247-4.19.255 - Use-After-Free in NFSv4/pnfs Open RPC

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: NFSv4/pnfs: Fix a use-after-free bug in open If someone cancels the open RPC call, then we must not try to free either the open slot or the layoutget operation arguments, since they are likely still in use by the hung RPC call.

References (6)

Core 6

Core References

Patch

https://git.kernel.org/stable/c/0fffb46ff3d5ed4668aca96441ec7a25b793bd6f

Patch

https://git.kernel.org/stable/c/f7ee3b772d9de87387a725caa04bc041ac7fe5ec

Patch

https://git.kernel.org/stable/c/76ffd2042438769298f34b76102b40dea89de616

Patch

https://git.kernel.org/stable/c/a4cf3dadd1fa43609f7c6570c9116b0e0a9923d1

Patch

https://git.kernel.org/stable/c/b03d1117e9be7c7da60e466eaf9beed85c5916c8

Patch

https://git.kernel.org/stable/c/2135e5d56278ffdb1c2e6d325dc6b87f669b9dac

Scores

CVSS v3 7.8

EPSS 0.0016

EPSS Percentile 5.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-416

Status published

Products (23)

Linux/Linux < 5.19

Linux/Linux 08d7a26d115cc7892668baa9750f64bd8baca29b

Linux/Linux 0ee5b9644f06b4d3cdcd9544f43f63312e425a4c - 76ffd2042438769298f34b76102b40dea89de616

Linux/Linux 4.19.247 - 4.19.256

Linux/Linux 4.19.256 - 4.19.*

Linux/Linux 5.10.122 - 5.10.138

Linux/Linux 5.10.138 - 5.10.*

Linux/Linux 5.15.47 - 5.15.63

Linux/Linux 5.15.63 - 5.15.*

Linux/Linux 5.17.15 - 5.18

... and 13 more

Published Jun 18, 2025

Tracked Since Feb 18, 2026