Linux Distros Unpatched Vulnerability : CVE-2022-50843

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dm clone: Fix UAF in clonedtr Dmclone also has the same UAF problem when dmresume and dmdestroy are concurrent. Therefore, cancelling timer again in clonedtr...

CVE-2022-50843

CVE-2022-50843 refers to a Linux kernel vulnerability in the dm clone path, specifically a use-after-free (UAF) in clone_dtr() that also affects dm_clone when dm_resume() and dm_destroy() run concurrently. The issue was addressed by cancelling the timer again in clone_dtr(), with fixes implemente...

CVE-2022-50843 dm clone: Fix UAF in clone_dtr()

In the Linux kernel, the following vulnerability has been resolved: dm clone: Fix UAF in clonedtr Dmclone also has the same UAF problem when dmresume and dmdestroy are concurrent. Therefore, cancelling timer again in clonedtr...

GSD-2023-1000925 dm clone: Fix UAF in clone_dtr()

dm clone: Fix UAF in clonedtr This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.87 by commit 856edd0e92f3fe89606b704c86a93daedddfe6ec, it wa...