Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: dm integrity: Fix UAF in dm_integrity_dtr() Dm_integrity also has the same UAF problem when dm_resume() and dm_destroy() are concurrent. Therefore, cancelling timer again in dm_integrity_dtr().
References
- https://git.kernel.org/stable/c/792e51aac376cfb5bd527c2a30826223b82dd177
- https://git.kernel.org/stable/c/9215b25f2e105032114e9b92c9783a2a84ee8af9
- https://git.kernel.org/stable/c/9f8e1e54a3a424c6c4fb8742e094789d3ec91e42
- https://git.kernel.org/stable/c/a506b5c92757b034034ef683e667bffc456c600b
- https://git.kernel.org/stable/c/b6c93cd61afab061d80cc842333abca97b289774
- https://git.kernel.org/stable/c/f50cb2cbabd6c4a60add93d72451728f86e4791c
FAQ
What is CVE-2022-50889?
CVE-2022-50889 is a documented vulnerability. In the Linux kernel, the following vulnerability has been resolved: dm integrity: Fix UAF in dm_integrity_dtr() Dm_integrity also has the same UAF problem when dm_resume() and dm_destroy() are concu...
How severe is CVE-2022-50889?
CVSS scoring is not yet available for CVE-2022-50889. Check NVD for updates.
Is there a patch for CVE-2022-50889?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.