CVE-2022-49178

Summary

In the Linux kernel, the following vulnerability has been resolved:

memstick/mspro_block: fix handling of read-only devices

Use set_disk_ro to propagate the read-only state to the block layer instead of checking for it in ->open and leaking a reference in case of a read-only device.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxbaf8532a147d5b76681ce040e2c8f25a3f0e718d < 057b53c4f87690d626203acef8b63d52a9bf2f43affected
LinuxLinuxbaf8532a147d5b76681ce040e2c8f25a3f0e718d < 6a0725b9d78ff6efdc95a37e4f05072e79c63918affected
LinuxLinuxbaf8532a147d5b76681ce040e2c8f25a3f0e718d < 6dab421bfe06a59bf8f212a72e34673e8acf2018affected
LinuxLinux2.6.25affected
LinuxLinux0 < 2.6.25unaffected
LinuxLinux5.16.19 <= 5.16.*unaffected
LinuxLinux5.17.2 <= 5.17.*unaffected
LinuxLinux5.18 <= *unaffected

Weaknesses

References