CVE-2022-50496

In the Linux kernel, the following vulnerability has been resolved: dm cache: Fix UAF in destroy() Dm_cache also has the same UAF problem when dm_resume() and dm_destroy() are concurrent. Therefore, cancelling timer again in destroy().

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/034cbc8d3b47a56acd89453c29632a9c117de09d	Patch
https://git.kernel.org/stable/c/2b17026685a270b2beaf1cdd9857fcedd3505c7e	Patch
https://git.kernel.org/stable/c/2f097dfac7579fd84ff98eb1d3acd41d53a485f3	Patch
https://git.kernel.org/stable/c/4d20032dd90664de09f2902a7ea49ae2f7771746	Patch
https://git.kernel.org/stable/c/6a3e412c2ab131c54945327a7676b006f000a209	Patch
https://git.kernel.org/stable/c/6a459d8edbdbe7b24db42a5a9f21e6aa9e00c2aa	Patch
https://git.kernel.org/stable/c/6ac4f36910764cb510bafc4c3768544f86ca48ca	Patch
https://git.kernel.org/stable/c/993406104d2b28fe470126a062ad37a1e21e792e	Patch
https://git.kernel.org/stable/c/d2a0b298ebf83ab6236f66788a3541e91ce75a70	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::

History

22 Jan 2026, 19:06

Type	Values Removed	Values Added
CPE		cpe:2.3:o:linux:linux_kernel::::::::
References	~~() https://git.kernel.org/stable/c/034cbc8d3b47a56acd89453c29632a9c117de09d -~~	() https://git.kernel.org/stable/c/034cbc8d3b47a56acd89453c29632a9c117de09d - Patch
References	~~() https://git.kernel.org/stable/c/2b17026685a270b2beaf1cdd9857fcedd3505c7e -~~	() https://git.kernel.org/stable/c/2b17026685a270b2beaf1cdd9857fcedd3505c7e - Patch
References	~~() https://git.kernel.org/stable/c/2f097dfac7579fd84ff98eb1d3acd41d53a485f3 -~~	() https://git.kernel.org/stable/c/2f097dfac7579fd84ff98eb1d3acd41d53a485f3 - Patch
References	~~() https://git.kernel.org/stable/c/4d20032dd90664de09f2902a7ea49ae2f7771746 -~~	() https://git.kernel.org/stable/c/4d20032dd90664de09f2902a7ea49ae2f7771746 - Patch
References	~~() https://git.kernel.org/stable/c/6a3e412c2ab131c54945327a7676b006f000a209 -~~	() https://git.kernel.org/stable/c/6a3e412c2ab131c54945327a7676b006f000a209 - Patch
References	~~() https://git.kernel.org/stable/c/6a459d8edbdbe7b24db42a5a9f21e6aa9e00c2aa -~~	() https://git.kernel.org/stable/c/6a459d8edbdbe7b24db42a5a9f21e6aa9e00c2aa - Patch
References	~~() https://git.kernel.org/stable/c/6ac4f36910764cb510bafc4c3768544f86ca48ca -~~	() https://git.kernel.org/stable/c/6ac4f36910764cb510bafc4c3768544f86ca48ca - Patch
References	~~() https://git.kernel.org/stable/c/993406104d2b28fe470126a062ad37a1e21e792e -~~	() https://git.kernel.org/stable/c/993406104d2b28fe470126a062ad37a1e21e792e - Patch
References	~~() https://git.kernel.org/stable/c/d2a0b298ebf83ab6236f66788a3541e91ce75a70 -~~	() https://git.kernel.org/stable/c/d2a0b298ebf83ab6236f66788a3541e91ce75a70 - Patch
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.8
CWE		CWE-416
First Time		Linux Linux linux Kernel

04 Oct 2025, 16:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-10-04 16:15

Updated : 2026-01-22 19:06

NVD link : CVE-2022-50496

Mitre link : CVE-2022-50496

CVE.ORG link : CVE-2022-50496

JSON object : View

Products Affected

linux

linux_kernel

CWE

CWE-416

Use After Free

7.8 /10