CVE-2022-50485
- Source
- https://cve.org/CVERecord?id=CVE-2022-50485
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-50485.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-50485
- Downstream
- Related
- Published
- 2025-10-04T15:16:43.093Z
- Modified
- 2026-05-15T11:54:11.236347092Z
- Summary
- ext4: add EXT4_IGET_BAD flag to prevent unexpected bad inode
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ext4: add EXT4IGETBAD flag to prevent unexpected bad inode
There are many places that will get unhappy (and crash) when ext4iget() returns a bad inode. However, if iget the boot loader inode, allows a bad inode to be returned, because the inode may not be initialized. This mechanism can be used to bypass some checks and cause panic. To solve this problem, we add a special iget flag EXT4IGETBAD. Only with this flag we'd be returning bad inode from ext4iget(), otherwise we always return the error code if the inode is bad inode.(suggested by Jan Kara)
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50485.json" }- References
-
- https://git.kernel.org/stable/c/2142dfa1de61e25b83198af0308ec7689cca25d3
- https://git.kernel.org/stable/c/488a5c2bf7543c3cd3f07a025f2e62be91599430
- https://git.kernel.org/stable/c/63b1e9bccb71fe7d7e3ddc9877dbdc85e5d2d023
- https://git.kernel.org/stable/c/c0a738875c2e9c8c3366d792f8bf7fe508d5e5a5
- https://git.kernel.org/stable/c/f725b290ed79ad61e4f721fee95a287892d8b1ad
- https://git.kernel.org/stable/c/f7e6b5548f915d7aa435d0764d41eacfb49c6e09
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50485.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-50485
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git