CVE-2022-50755Improper Update of Reference Count in Linux

CWE-911Improper Update of Reference Count7 documents6 sources
Severity
5.3MEDIUM
No vector
EPSS
0.0%
top 84.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: udf: Avoid double brelse() in udf_rename() syzbot reported a warning like below [1]: VFS: brelse: Trying to free free buffer WARNING: CPU: 2 PID: 7301 at fs/buffer.c:1145 __brelse+0x67/0xa0 ... Call Trace: invalidate_bh_lru+0x99/0x150 smp_call_function_many_cond+0xe2a/0x10c0 ? generic_remap_file_range_prep+0x50/0x50 ? __brelse+0xa0/0xa0 ? __mutex_lock+0x21c/0x12d0 ? smp_call_on_cpu+0x250/0x250 ? rcu_read_lock_sched_held+0xb/

Affected Packages4 packages

Linuxlinux/linux_kernel4.2.04.9.337+7
Debianlinux/linux_kernel< 5.10.178-1+3
CVEListV5linux/linux231473f6ddcef9c01993e0bfe36acc6f8e425c3178eba2778ae10fb2a9d450e14d26eb6f6bf1f906+9
debiandebian/linux< linux 6.1.4-1 (bookworm)

🔴Vulnerability Details

3
OSV
udf: Avoid double brelse() in udf_rename()2025-12-24
GHSA
GHSA-4xw5-xvv7-qcv6: In the Linux kernel, the following vulnerability has been resolved: udf: Avoid double brelse() in udf_rename() syzbot reported a warning like below2025-12-24
OSV
CVE-2022-50755: In the Linux kernel, the following vulnerability has been resolved: udf: Avoid double brelse() in udf_rename() syzbot reported a warning like below [12025-12-24

📋Vendor Advisories

2
Red Hat
kernel: Linux kernel UDF filesystem: Denial of Service due to memory corruption during rename operations2025-12-24
Debian
CVE-2022-50755: linux - In the Linux kernel, the following vulnerability has been resolved: udf: Avoid ...2022

🕵️Threat Intelligence

1
Wiz
CVE-2022-50755 Impact, Exploitability, and Mitigation Steps | Wiz