CVE-2022-50300 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix extent map use-after-free when handling missing device in read_one_chunk Store the error code before freeing the extent_map. Though it's reference counted structure, in that function it's the first and last allocation so this would lead to a potential use-after-free. The error can happen eg. when chunk is stored on a missing device and the degraded mount option is missing. Bugzilla: https://bugzilla.kernel.org/show_bug.cgi?id=216721

PUBLISHED Reserved 2025-09-15 | Published 2025-09-15 | Updated 2025-09-15 | Assigner Linux

Product status

Default status

unaffected

adfb69af7d8cb6a3958f75aad1ef4bc96891d116 (git) before b8e7ed42bc3ca0d0e4191ee394d34962d3624c22

affected

adfb69af7d8cb6a3958f75aad1ef4bc96891d116 (git) before fce3713197ebba239e1c7e02174ed216ea1ee014

affected

adfb69af7d8cb6a3958f75aad1ef4bc96891d116 (git) before 169a4cf46882974d4db6d85eb623ec898e51bbc0

affected

adfb69af7d8cb6a3958f75aad1ef4bc96891d116 (git) before 1742e1c90c3da344f3bb9b1f1309b3f47482756a

affected

Default status

affected

4.15

affected

Any version before 4.15

unaffected

5.15.87 (semver)

unaffected

6.0.18 (semver)

unaffected

6.1.4 (semver)

unaffected

6.2 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/b8e7ed42bc3ca0d0e4191ee394d34962d3624c22

git.kernel.org/...c/fce3713197ebba239e1c7e02174ed216ea1ee014

git.kernel.org/...c/169a4cf46882974d4db6d85eb623ec898e51bbc0

git.kernel.org/...c/1742e1c90c3da344f3bb9b1f1309b3f47482756a

cve.org (CVE-2022-50300)

nvd.nist.gov (CVE-2022-50300)

Download JSON

help @ threatint.eu