CVE-2022-50839
Unknown Unknown - Not Provided
Reference Count Leak in Linux Kernel jbd2 Component Causes Resource Exhaustion

Publication date: 2025-12-30

Last updated on: 2025-12-30

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: jbd2: fix potential buffer head reference count leak As in 'jbd2_fc_wait_bufs' if buffer isn't uptodate, will return -EIO without update 'journal->j_fc_off'. But 'jbd2_fc_release_bufs' will release buffer head from β€˜j_fc_off - 1’ if 'bh' is NULL will terminal release which will lead to buffer head buffer head reference count leak. To solve above issue, update 'journal->j_fc_off' before return -EIO.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-30
Last Modified
2025-12-30
Generated
2026-06-16
AI Q&A
2025-12-30
EPSS Evaluated
2026-06-14
NVD
CVE-2022-50839
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability in the Linux kernel's jbd2 subsystem involves a potential buffer head reference count leak. Specifically, in the function 'jbd2_fc_wait_bufs', if a buffer isn't up to date, the function returns an error (-EIO) without updating the 'journal->j_fc_off' offset. Later, 'jbd2_fc_release_bufs' may release a buffer head based on an outdated offset, which can lead to a reference count leak of the buffer head. The fix involves updating 'journal->j_fc_off' before returning the error to prevent this leak.

Impact Analysis

This vulnerability can lead to a buffer head reference count leak in the Linux kernel's journaling subsystem. Such a leak may cause resource exhaustion or instability in the system due to unreleased buffer heads, potentially affecting system reliability and performance.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2022-50839. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart