CVE-2022-50786

During error on CLOSEINSTANCE command, ctxworkbits was not getting cleared. During consequent mfc execution NULL pointer dereferencing of this context led to kernel panic. This patch fixes this issue by making sure to clear ctxwork_bits always.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50786.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

818cd91ab8c6e42c2658c8e61f8462637c6f586b

Fixed

12242bd13ce68acd571b2cce6ab302e154e8a4ee

Fixed

640075400c7c577b0f5369b935e22a588773fafa

Fixed

8ff64edf9d16e8c277dcc8189794763624e6b4b8

Fixed

ff27800c0a6d81571671b33f696109804d015409

Fixed

09c1fbbe532758e4046c20829f4c0c50b99332dc

Fixed

bd1b72f0c39a0d791a087b4e643701a48328ba8e

Fixed

d3f3c2fe54e30b0636496d842ffbb5ad3a547f9b

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50786.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

3.16.0

Fixed

4.19.270

Type: ECOSYSTEM
Events: Introduced

4.20.0

Fixed

5.4.229

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.163

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.87

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.0.18

Type: ECOSYSTEM
Events: Introduced

6.1.0

Fixed

6.1.4

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50786.json"