CVE-2022-50621

Vulnerability Description

In the Linux kernel, the following vulnerability has been resolved: dm: verity-loadpin: Only trust verity targets with enforcement Verity targets can be configured to ignore corrupted data blocks. LoadPin must only trust verity targets that are configured to perform some kind of enforcement when data corruption is detected, like returning an error, restarting the system or triggering a panic.

References

https://git.kernel.org/stable/c/916ef6232cc4b84db7082b4c3d3cf1753d9462ba
https://git.kernel.org/stable/c/cb1f5b76e39d86c98722696bdf632987aa777b83

FAQ

What is CVE-2022-50621?

CVE-2022-50621 is a documented vulnerability. In the Linux kernel, the following vulnerability has been resolved: dm: verity-loadpin: Only trust verity targets with enforcement Verity targets can be configured to ignore corrupted data blocks. L...

How severe is CVE-2022-50621?

CVSS scoring is not yet available for CVE-2022-50621. Check NVD for updates.

Is there a patch for CVE-2022-50621?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.