-

CVE-2022-50285

EPSS 0.03%
Veröffentlicht 15.09.2025 14:21:21
Zuletzt bearbeitet 15.09.2025 15:22:27
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

mm,hugetlb: take hugetlb_lock before decrementing h->resv_huge_pages

The h->*_huge_pages counters are protected by the hugetlb_lock, but
alloc_huge_page has a corner case where it can decrement the counter
outside of the lock.

This could lead to a corrupted value of h->resv_huge_pages, which we have
observed on our systems.

Take the hugetlb_lock before decrementing h->resv_huge_pages to avoid a
potential race.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 3e50a07b6a5fcd39df1534d3fdaca4292a65efe6

Version a88c769548047b21f76fd71e04b6a3300ff17160

Status affected

Version < 629c986e19fe9481227c7cdfd9a105bbc104d245

Version a88c769548047b21f76fd71e04b6a3300ff17160

Status affected

Version < 2b35432d324898ec41beb27031d2a1a864a4d40e

Version a88c769548047b21f76fd71e04b6a3300ff17160

Status affected

Version < 11993652d0b49e27272db0a37aa828d8a3a4b92b

Version a88c769548047b21f76fd71e04b6a3300ff17160

Status affected

Version < 568e3812b1778b4c0c229649b59977d88f400ece

Version a88c769548047b21f76fd71e04b6a3300ff17160

Status affected

Version < 112a005d1ded04a4b41b6d01833cc0bda90625cc

Version a88c769548047b21f76fd71e04b6a3300ff17160

Status affected

Version < c828fab903725279aa9dc6ae3d44bb7e4778f92c

Version a88c769548047b21f76fd71e04b6a3300ff17160

Status affected

Version < 12df140f0bdfae5dcfc81800970dd7f6f632e00c

Version a88c769548047b21f76fd71e04b6a3300ff17160

Status affected

Version 3f5fae4d1a3189d95b02b4b45e1218df147122bc

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 4.4

Status affected

Version < 4.4

Version 0

Status unaffected

Version <= 4.9.*

Version 4.9.332

Status unaffected

Version <= 4.14.*

Version 4.14.298

Status unaffected

Version <= 4.19.*

Version 4.19.264

Status unaffected

Version <= 5.4.*

Version 5.4.223

Status unaffected

Version <= 5.10.*

Version 5.10.153

Status unaffected

Version <= 5.15.*

Version 5.15.76

Status unaffected

Version <= 6.0.*

Version 6.0.6

Status unaffected

Version <= *

Version 6.1

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.078

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/3e50a07b6a5fcd39df1534d3fdaca4292a65efe6

https://git.kernel.org/stable/c/629c986e19fe9481227c7cdfd9a105bbc104d245

https://git.kernel.org/stable/c/2b35432d324898ec41beb27031d2a1a864a4d40e

https://git.kernel.org/stable/c/11993652d0b49e27272db0a37aa828d8a3a4b92b

https://git.kernel.org/stable/c/568e3812b1778b4c0c229649b59977d88f400ece

https://git.kernel.org/stable/c/112a005d1ded04a4b41b6d01833cc0bda90625cc

https://git.kernel.org/stable/c/c828fab903725279aa9dc6ae3d44bb7e4778f92c

https://git.kernel.org/stable/c/12df140f0bdfae5dcfc81800970dd7f6f632e00c

https://nvd.nist.gov/vuln/detail/CVE-2022-50285

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-50285

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-50285

EUVD