CVE-2022-50302

Summary

In the Linux kernel, the following vulnerability has been resolved:

lockd: set other missing fields when unlocking files

vfs_lock_file() expects the struct file_lock to be fully initialised by the caller. Re-exported NFSv3 has been seen to Oops if the fl_file field is NULL.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux486c1acf14233b1ff7b37e6f026a737a2f7f53f1 < 31c93ee5f1e4dc278b562e20f3c3274ac34997f3affected
LinuxLinux9c3eef773cf4a8a18f959234bbb4c0a55c31ab71 < 95d42a8d3d4ae84a0bd3ee23e1fee240cdf0a9f0affected
LinuxLinuxaec158242b87a43d83322e99bc71ab4428e5ab79 < 688575aef211b0986fc51010116f5888a99d76a2affected
LinuxLinuxaec158242b87a43d83322e99bc71ab4428e5ab79 < d7aa9f7778316beb690f6e2763b6d672ad8b256faffected
LinuxLinuxaec158242b87a43d83322e99bc71ab4428e5ab79 < 18ebd35b61b4693a0ddc270b6d4f18def232e770affected
LinuxLinux58c3f48a540b821b3253e2dc31c8fa237293ffc9affected
LinuxLinux5.15.56 < 5.15.86affected
LinuxLinux5.18.13 < 5.19affected
LinuxLinux5.19affected
LinuxLinux0 < 5.19unaffected
LinuxLinux5.15.86 <= 5.15.*unaffected
LinuxLinux6.0.16 <= 6.0.*unaffected
LinuxLinux6.1.2 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

References