CVE-2022-50839
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
30/12/2025
Last modified:
30/12/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
jbd2: fix potential buffer head reference count leak<br />
<br />
As in &#39;jbd2_fc_wait_bufs&#39; if buffer isn&#39;t uptodate, will return -EIO without<br />
update &#39;journal->j_fc_off&#39;. But &#39;jbd2_fc_release_bufs&#39; will release buffer head<br />
from ‘j_fc_off - 1’ if &#39;bh&#39; is NULL will terminal release which will lead to<br />
buffer head buffer head reference count leak.<br />
To solve above issue, update &#39;journal->j_fc_off&#39; before return -EIO.
Impact
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/68ed9c76b2affd47177b92495446abb7262d0ef7
- https://git.kernel.org/stable/c/7a33dde572fceb45d02d188e0213c47059401c93
- https://git.kernel.org/stable/c/9b073d73725366d886b711b74e058c02f51e7a0e
- https://git.kernel.org/stable/c/e0d5fc7a6d80ac2406c7dfc6bb625201d0250a8a
- https://git.kernel.org/stable/c/e7385c868ee038d6a0cb0e85c22d2741e7910fd5