CVE-2022-49343

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-49343
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49343.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-49343
Downstream
Related
Published
2025-02-26T02:10:59.970Z
Modified
2026-03-20T12:22:22.211244Z
Summary
ext4: avoid cycles in directory h-tree
Details

In the Linux kernel, the following vulnerability has been resolved:

ext4: avoid cycles in directory h-tree

A maliciously corrupted filesystem can contain cycles in the h-tree stored inside a directory. That can easily lead to the kernel corrupting tree nodes that were already verified under its hands while doing a node split and consequently accessing unallocated memory. Fix the problem by verifying traversed block numbers are unique.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49343.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
ac27a0ec112a089f1a5102bc8dffc79c8c815571
Fixed
24b8206fec1db21d7e82f21f0b2ff5e5672cf5b3
Fixed
b3ad9ff6f06c1dc6abf7437691c88ca3d6da3ac0
Fixed
e157c8f87e8fac112d6c955e69a60cdb9bc80a60
Fixed
ff4cafa51762da3824881a9000ca421d4b78b138
Fixed
3a3ce941645407cd0b0b7f01ad9e2ea3770f46cc
Fixed
d5a16a6df2c16eaf4de04948553ef0089dee463f
Fixed
6084240bfc44bf265ab6ae7d96980469b05be0f1
Fixed
3ba733f879c2a88910744647e41edeefbc0d92b2

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49343.json"