CVE-2022-50217

Published: Jun 18, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: fuse: write inode in fuse_release() A race between write(2) and close(2) allows pages to be dirtied after fuse_flush -> write_inode_now(). If these pages are not flushed from fuse_release(), then there might not be a writable open file later. So any remaining dirty pages must be written back before the file is released. This is a partial revert of the blamed commit.

Vendor	Product	Versions
Linux	Linux	affected `36ea23374d1f7b6a9d96a2b61d38830fdf23e45d - < 5ccb0420b7c9334ab8122037847101931b899301` affected `36ea23374d1f7b6a9d96a2b61d38830fdf23e45d - < 4bd9d5d20f344d015422969302d12653c903c271` affected `36ea23374d1f7b6a9d96a2b61d38830fdf23e45d - < 035ff33cf4db101250fb980a3941bf078f37a544`
Linux	Linux	affected `5.16` unaffected `0 - < 5.16` unaffected `5.18.18 - <= 5.18.` unaffected `5.19.2 - <= 5.19.` unaffected `6.0 - <= *`

References

https://git.kernel.org/stable/c/5ccb0420b7c9334ab8122037847101931b899301

https://git.kernel.org/stable/c/4bd9d5d20f344d015422969302d12653c903c271

https://git.kernel.org/stable/c/035ff33cf4db101250fb980a3941bf078f37a544

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-50217

Description

Affected Products

References