CVE-2022-50083 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: ext4: add EXT4_INODE_HAS_XATTR_SPACE macro in xattr.h When adding an xattr to an inode, we must ensure that the inode_size is not less than EXT4_GOOD_OLD_INODE_SIZE + extra_isize + pad. Otherwise, the end position may be greater than the start position, resulting in UAF.

Reserved 2025-06-18 | Published 2025-06-18 | Updated 2025-06-18 | Assigner Linux

Product status

Default status

unaffected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 214c68423fd632646c68f3ec8b3c2602cf8273f3

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before f217b1ccb178475192e6a516fab7230f51ddae94

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 0e69cf833161b29b2e25dcbf2f2b4e70d75b15cf

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 748d17d47687e178f8e38938447fa4636c071c41

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 2da44a2927a71bff2bc66cefa8cfbd2ace702536

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before e6321fda51e5b4dd7ec295afb84cbf63c2634c7b

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 37d82aa78346866552d573e8badc0aa8db8f1eea

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 4cdc284ffadd6a989f24107ee7f09be43b748fbb

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 179b14152dcb6a24c3415200603aebca70ff13af

affected

Default status

affected

4.9.326

unaffected

4.14.291

unaffected

4.19.256

unaffected

5.4.211

unaffected

5.10.137

unaffected

5.15.61

unaffected

5.18.18

unaffected

5.19.2

unaffected

6.0

unaffected

References

git.kernel.org/...c/214c68423fd632646c68f3ec8b3c2602cf8273f3

git.kernel.org/...c/f217b1ccb178475192e6a516fab7230f51ddae94

git.kernel.org/...c/0e69cf833161b29b2e25dcbf2f2b4e70d75b15cf

git.kernel.org/...c/748d17d47687e178f8e38938447fa4636c071c41

git.kernel.org/...c/2da44a2927a71bff2bc66cefa8cfbd2ace702536

git.kernel.org/...c/e6321fda51e5b4dd7ec295afb84cbf63c2634c7b

git.kernel.org/...c/37d82aa78346866552d573e8badc0aa8db8f1eea

git.kernel.org/...c/4cdc284ffadd6a989f24107ee7f09be43b748fbb

git.kernel.org/...c/179b14152dcb6a24c3415200603aebca70ff13af

cve.org (CVE-2022-50083)

nvd.nist.gov (CVE-2022-50083)

Download JSON