CVE-2022-50840
Published: Dec 30, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible UAF in snic_tgt_create() Smatch reports a warning as follows: drivers/scsi/snic/snic_disc.c:307 snic_tgt_create() warn: '&tgt->list' not removed from list If device_add() fails in snic_tgt_create(), tgt will be freed, but tgt->list will not be removed from snic->disc.tgt_list, then list traversal may cause UAF. Remove from snic->disc.tgt_list before free().
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected c8806b6c9e824f47726f2a9b7fbbe7ebf19306fa - < f9d8b8ba0f1a16cde0b1fc9e80466df76b6db8ffaffected c8806b6c9e824f47726f2a9b7fbbe7ebf19306fa - < 3772319e40527e6a5f2ec1d729e01f271d818f5caffected c8806b6c9e824f47726f2a9b7fbbe7ebf19306fa - < 3007f96ca20c848d0b1b052df6d2cb5ae5586e78affected c8806b6c9e824f47726f2a9b7fbbe7ebf19306fa - < 6866154c23fba40888ad6d554cccd4bf2edb755eaffected c8806b6c9e824f47726f2a9b7fbbe7ebf19306fa - < ad27f74e901fc48729733c88818e6b96c813057d+4 more versions |
Linux | Linux | affected 4.2unaffected 0 - < 4.2unaffected 4.9.337 - <= 4.9.*unaffected 4.14.303 - <= 4.14.*unaffected 4.19.270 - <= 4.19.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now