CVE-2022-50737Linux vulnerability

7 documents6 sources
Severity
N/A
No vector
EPSS
0.0%
top 92.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate index root when initialize NTFS security This enhances the sanity check for $SDH and $SII while initializing NTFS security, guarantees these index root are legit. [ 162.459513] BUG: KASAN: use-after-free in hdr_find_e.isra.0+0x10c/0x320 [ 162.460176] Read of size 2 at addr ffff8880037bca99 by task mount/243 [ 162.460851] [ 162.461252] CPU: 0 PID: 243 Comm: mount Not tainted 6.0.0-rc7 #42 [ 162.461744] Hardw

Affected Packages4 packages

Linuxlinux/linux_kernel5.15.05.15.87+2
Debianlinux/linux_kernel< 6.1.4-1+2
CVEListV5linux/linux82cae269cfa953032fbb8980a7d554d60fb00b17d7ce7bb6881aae186e50f57eea935cff8d504751+4
debiandebian/linux< linux 6.1.4-1 (bookworm)

🔴Vulnerability Details

3
OSV
CVE-2022-50737: In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate index root when initialize NTFS security This enhances the sani2025-12-24
OSV
fs/ntfs3: Validate index root when initialize NTFS security2025-12-24
GHSA
GHSA-h62j-73wj-f3jq: In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate index root when initialize NTFS security This enhances the sa2025-12-24

📋Vendor Advisories

2
Red Hat
kernel: fs/ntfs3: Validate index root when initialize NTFS security2025-12-24
Debian
CVE-2022-50737: linux - In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: V...2022

🕵️Threat Intelligence

1
Wiz
CVE-2022-50737 Impact, Exploitability, and Mitigation Steps | Wiz