CVE-2022-50485
Published: Oct 4, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: ext4: add EXT4_IGET_BAD flag to prevent unexpected bad inode There are many places that will get unhappy (and crash) when ext4_iget() returns a bad inode. However, if iget the boot loader inode, allows a bad inode to be returned, because the inode may not be initialized. This mechanism can be used to bypass some checks and cause panic. To solve this problem, we add a special iget flag EXT4_IGET_BAD. Only with this flag we'd be returning bad inode from ext4_iget(), otherwise we always return the error code if the inode is bad inode.(suggested by Jan Kara)
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 393d1d1d76933886d5e1ce603214c9987589c6d5 - < 2142dfa1de61e25b83198af0308ec7689cca25d3affected 393d1d1d76933886d5e1ce603214c9987589c6d5 - < c0a738875c2e9c8c3366d792f8bf7fe508d5e5a5affected 393d1d1d76933886d5e1ce603214c9987589c6d5 - < f7e6b5548f915d7aa435d0764d41eacfb49c6e09affected 393d1d1d76933886d5e1ce603214c9987589c6d5 - < f725b290ed79ad61e4f721fee95a287892d8b1adaffected 393d1d1d76933886d5e1ce603214c9987589c6d5 - < 488a5c2bf7543c3cd3f07a025f2e62be91599430+1 more versions |
Linux | Linux | affected 3.10unaffected 0 - < 3.10unaffected 5.4.229 - <= 5.4.*unaffected 5.10.163 - <= 5.10.*unaffected 5.15.87 - <= 5.15.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now