CVE-2022-50839
Unknown Unknown - Not Provided

Reference Count Leak in Linux Kernel jbd2 Component Causes Resource Exhaustion

Vulnerability report for CVE-2022-50839, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2025-12-30

Last updated on: 2025-12-30

Assigner: kernel.org

Description

In the Linux kernel, the following vulnerability has been resolved: jbd2: fix potential buffer head reference count leak As in 'jbd2_fc_wait_bufs' if buffer isn't uptodate, will return -EIO without update 'journal->j_fc_off'. But 'jbd2_fc_release_bufs' will release buffer head from β€˜j_fc_off - 1’ if 'bh' is NULL will terminal release which will lead to buffer head buffer head reference count leak. To solve above issue, update 'journal->j_fc_off' before return -EIO.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2025-12-30
Last Modified
2025-12-30
Generated
2026-07-06
AI Q&A
2025-12-30
EPSS Evaluated
2026-07-05
NVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability in the Linux kernel's jbd2 subsystem involves a potential buffer head reference count leak. Specifically, in the function 'jbd2_fc_wait_bufs', if a buffer isn't up to date, the function returns an error (-EIO) without updating the 'journal->j_fc_off' offset. Later, 'jbd2_fc_release_bufs' may release a buffer head based on an outdated offset, which can lead to a reference count leak of the buffer head. The fix involves updating 'journal->j_fc_off' before returning the error to prevent this leak.

Impact Analysis

This vulnerability can lead to a buffer head reference count leak in the Linux kernel's journaling subsystem. Such a leak may cause resource exhaustion or instability in the system due to unreleased buffer heads, potentially affecting system reliability and performance.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2022-50839. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart