CVE-2022-50059

ceph: don't leak snap_rwsem in handle_cap_grant

Description

In the Linux kernel, the following vulnerability has been resolved: ceph: don't leak snap_rwsem in handle_cap_grant When handle_cap_grant is called on an IMPORT op, then the snap_rwsem is held and the function is expected to release it before returning. It currently fails to do that in all cases which could lead to a deadlock.

N/A
CVSS
Severity:
EPSS 0.02%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/aee18421bda6bf12a7cba6a3d7751c0e1cfd0094
https://git.kernel.org/stable/c/f546faa216d0f53a42ca73ba1fd8c48765b22d77
https://git.kernel.org/stable/c/a090cc69699ec2d11b5e34cee8c61f0d4b0068cb
https://git.kernel.org/stable/c/58dd4385577ed7969b80cdc9e2a31575aba6c712

Frequently Asked Questions

What is the severity of CVE-2022-50059?
CVE-2022-50059 has not yet been assigned a CVSS score.
How to fix CVE-2022-50059?
To fix CVE-2022-50059, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-50059 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2022-50059 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-50059?
CVE-2022-50059 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.