CVE-2022-50329 block, bfq: fix uaf for bfqq in bfq_exit_icq_bfqq

🗓️ 15 Sep 2025 14:49:32Reported by LinuxType

Block BFQ fixes use-after-free by delaying bfq_exit_bfqq after bic_set_bfqq.

Reporter	Title	Published	Views	Family All 68
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2023-013 (ALASKERNEL-5.15-2023-013)	8 Feb 202300:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP13 : kernel (EulerOS-SA-2026-1244)	10 Mar 202600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP13 : kernel (EulerOS-SA-2026-1280)	10 Mar 202600:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.13.1 : kernel (EulerOS-SA-2026-2132)	6 Jun 202600:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.13.0 : kernel (EulerOS-SA-2026-2171)	6 Jun 202600:00	–	nessus
Tenable Nessus	SUSE SLES15: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2025:03615-1)	21 Oct 202500:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : kernel (SUSE-SU-2025:03628-1)	21 Oct 202500:00	–	nessus
Tenable Nessus	Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010981)	21 Apr 202600:00	–	nessus
Tenable Nessus	Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013504)	22 Apr 202600:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2022-50329	16 Sep 202500:00	–	nessus

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "block/bfq-iosched.c"
    ],
    "versions": [
      {
        "version": "5533742c7cb1bc9b1f0bf401cc397d44a3a9e07a",
        "lessThan": "1425f1bb5df5239021fd09ebc2a5e8070e705d36",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "094f3d9314d67691cb21ba091c1b528f6e3c4893",
        "lessThan": "7949b0df3dd9f4817ed4a4e989fa9ee81df6205f",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b22fd72bfebda3956efc4431b60ddfc0a51e03e0",
        "lessThan": "cfe5b38c37720313eff0dec5517442c7ab3c9a20",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "761564d93c8265f65543acf0a576b32d66bfa26a",
        "lessThan": "1ed959fef5b1c6f1a7a3fbea543698c30ebd6678",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "64dc8c732f5c2b406cc752e6aaa1bd5471159cab",
        "lessThan": "246cf66e300b76099b5dbd3fdd39e9a5dbc53f02",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "block/bfq-iosched.c"
    ],
    "versions": [
      {
        "version": "5.15.86",
        "lessThan": "5.15.87",
        "status": "affected",
        "versionType": "semver"
      },
      {
        "version": "6.0.16",
        "lessThan": "6.0.17",
        "status": "affected",
        "versionType": "semver"
      },
      {
        "version": "6.1.2",
        "lessThan": "6.1.3",
        "status": "affected",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/cfe5b38c37720313eff0dec5517442c7ab3c9a20
git	www.git.kernel.org/stable/c/1ed959fef5b1c6f1a7a3fbea543698c30ebd6678
git	www.git.kernel.org/stable/c/1425f1bb5df5239021fd09ebc2a5e8070e705d36
git	www.git.kernel.org/stable/c/246cf66e300b76099b5dbd3fdd39e9a5dbc53f02
git	www.git.kernel.org/stable/c/7949b0df3dd9f4817ed4a4e989fa9ee81df6205f

11 May 2026 19:17Current

EPSS0.00154