CVE-2022-50234

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-50234
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-50234.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-50234
Downstream
Related
Published
2025-09-15T14:01:38.199Z
Modified
2026-03-20T11:47:18.851103Z
Summary
io_uring/af_unix: defer registered files gc to io_uring release
Details

In the Linux kernel, the following vulnerability has been resolved:

iouring/afunix: defer registered files gc to io_uring release

Instead of putting iouring's registered files in unixgc() we want it to be done by iouring itself. The trick here is to consider iouring registered files for cycle detection but not actually putting them down. Because iouring can't register other ring instances, this will remove all refs to the ring file triggering the ->release path and clean up with ioringctxfree().

[axboe: add kerneldoc comment to skb, fold in skb leak fix]

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50234.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
6b06314c47e141031be043539900d80d2c7ba10f
Fixed
04df9719df1865f6770af9bc7880874af0e594b2
Fixed
c378c479c5175833bb22ff71974cda47d7b05401
Fixed
813d8fe5d30388f73a21d3a2bf46b0a1fd72498c
Fixed
b4293c01ee0d0ecdd3cb5801e13f62271144667a
Fixed
75e94c7e8859e58aadc15a98cc9704edff47d4f2
Fixed
0091bfc81741b8d3aeb3b7ab8636f911b2de6e80

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-50234.json"