CVE-2022-50493
- Source
- https://cve.org/CVERecord?id=CVE-2022-50493
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-50493.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-50493
- Downstream
- Related
- Published
- 2025-10-04T15:43:45.895Z
- Modified
- 2026-04-11T12:44:57.258019Z
- Summary
- scsi: qla2xxx: Fix crash when I/O abort times out
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: Fix crash when I/O abort times out
While performing CPU hotplug, a crash with the following stack was seen:
Call Trace: qla24xxprocessresponsequeue+0x42a/0x970 [qla2xxx] qla2x00startnvmemq+0x3a2/0x4b0 [qla2xxx] qlanvmepostcmd+0x166/0x240 [qla2xxx] nvmefcstartfcpop.part.0+0x119/0x2e0 [nvmefc] blkmqdispatchrqlist+0x17b/0x610 __blkmqscheddispatchrequests+0xb0/0x140 blkmqscheddispatchrequests+0x30/0x60 __blkmqrunhwqueue+0x35/0x90 __blkmqdelay_runhwqueue+0x161/0x180 blkexecuterq+0xbe/0x160 _nvmesubmitsynccmd+0x16f/0x220 [nvmecore] nvmfconnectadminqueue+0x11a/0x170 [nvmefabrics] nvmefccreateassociation.cold+0x50/0x3dc [nvmefc] nvmefcconnectctrlwork+0x19/0x30 [nvmefc] processonework+0x1e8/0x3c0
On abort timeout, completion was called without checking if the I/O was already completed.
Verify that I/O and abort request are indeed outstanding before attempting completion.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50493.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/05382ed9142cf8a8a3fb662224477eecc415778b
- https://git.kernel.org/stable/c/68ad83188d782b2ecef2e41ac245d27e0710fe8e
- https://git.kernel.org/stable/c/cb4dff498468b62e8c520568559b3a9007e104d7
- https://git.kernel.org/stable/c/d3871af13aa03fbbe7fbb812eaf140501229a72e
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50493.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-50493
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced71c80b75ce8f08c0978ce9a9816b81b5c3ce5e12Fixedd3871af13aa03fbbe7fbb812eaf140501229a72eFixedcb4dff498468b62e8c520568559b3a9007e104d7Fixed05382ed9142cf8a8a3fb662224477eecc415778bFixed68ad83188d782b2ecef2e41ac245d27e0710fe8e
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected457173c8b43ecd3ac48c8ace8d4437a50f7ad77bLast affectedb7abcc7df5e131c0b4bf89cb2411c5301ee83d26