CVE-2022-50377 - Vulnerability Details

Description

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

Published: 2025-09-18

Score: 7.0 High

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

No data.

Vendor	Product	Confidence	Versions
Linux	Linux Kernel	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2025-29983	This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://lore.kernel.org/linux-cve-announce/2025091851-CVE-2022-50377-f43b@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2022-50377
https://www.cve.org/CVERecord?id=CVE-2022-50377

History

Fri, 19 Sep 2025 16:30:00 +0000

Type	Values Removed	Values Added
References	https://git.kernel.org/stable/c/0c026f975d24701766cf4ac63995ead9f6d57a59 https://git.kernel.org/stable/c/318cdc822c63b6e2befcfdc2088378ae6fa18def https://git.kernel.org/stable/c/9020f56a3cad1c97b81c7dab2aa67027b59c8f73 https://git.kernel.org/stable/c/91009e361e8cb2cbd1dc9496cb5fb4f8de3f4b11 https://git.kernel.org/stable/c/f1ec687ebd1bf146333955b7e209d21508c3ba9f

Fri, 19 Sep 2025 15:30:00 +0000

Type	Values Removed	Values Added
Description	In the Linux kernel, the following vulnerability has been resolved: ext4: check and assert if marking an no_delete evicting inode dirty In ext4_evict_inode(), if we evicting an inode in the 'no_delete' path, it cannot be raced by another mark_inode_dirty(). If it happens, someone else may accidentally dirty it without holding inode refcount and probably cause use-after-free issues in the writeback procedure. It's indiscoverable and hard to debug, so add an WARN_ON_ONCE() to check and detect this issue in advance.	This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Title	ext4: check and assert if marking an no_delete evicting inode dirty	kernel: ext4: check and assert if marking an no_delete evicting inode dirty

Fri, 19 Sep 2025 09:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Linux Linux linux Kernel
Vendors & Products		Linux Linux linux Kernel

Fri, 19 Sep 2025 00:15:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025091851-CVE-2022-50377-f43b@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2022-50377 https://www.cve.org/CVERecord?id=CVE-2022-50377
Metrics	threat_severity `None`	cvssV3_1 `{'score': 7.0, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}` threat_severity `Important`

Thu, 18 Sep 2025 13:45:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: ext4: check and assert if marking an no_delete evicting inode dirty In ext4_evict_inode(), if we evicting an inode in the 'no_delete' path, it cannot be raced by another mark_inode_dirty(). If it happens, someone else may accidentally dirty it without holding inode refcount and probably cause use-after-free issues in the writeback procedure. It's indiscoverable and hard to debug, so add an WARN_ON_ONCE() to check and detect this issue in advance.
Title		ext4: check and assert if marking an no_delete evicting inode dirty
References		https://git.kernel.org/stable/c/0c026f975d24701766cf4ac63995ead9f6d57a59 https://git.kernel.org/stable/c/318cdc822c63b6e2befcfdc2088378ae6fa18def https://git.kernel.org/stable/c/9020f56a3cad1c97b81c7dab2aa67027b59c8f73 https://git.kernel.org/stable/c/91009e361e8cb2cbd1dc9496cb5fb4f8de3f4b11 https://git.kernel.org/stable/c/f1ec687ebd1bf146333955b7e209d21508c3ba9f

Subscriptions

Linux Linux Kernel

MITRE

Status: REJECTED

Assigner: Linux

Published: 2025-09-18T13:32:59.871Z

Updated: 2025-09-19T15:23:49.358Z

Reserved: 2025-09-17T14:53:06.996Z

Link: CVE-2022-50377

Vulnrichment

No data.

NVD

Status : Rejected

Published: 2025-09-18T14:15:36.397

Modified: 2025-09-19T16:15:40.350

Link: CVE-2022-50377

Redhat

Severity : Important

Publid Date: 2025-09-18T00:00:00Z

Links: CVE-2022-50377 - Bugzilla

OpenCVE Enrichment

Updated: 2025-09-19T09:36:38Z

Weaknesses

No weakness.

Tracking

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object