CVE-2022-50402 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: drivers/md/md-bitmap: check the return value of md_bitmap_get_counter() Check the return value of md_bitmap_get_counter() in case it returns NULL pointer, which will result in a null pointer dereference. v2: update the check to include other dereference

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

References

Link	Providers
https://git.kernel.org/stable/c/100caacfa0ed26e061954c90cdc835d42f709536
https://git.kernel.org/stable/c/21e9aac9a74d30907d44bae0d24c036cb3819406
https://git.kernel.org/stable/c/3bd548e5b819b8c0f2c9085de775c5c7bff9052f
https://git.kernel.org/stable/c/5d8d046f3dba939e74e2414f009df426700430ed
https://git.kernel.org/stable/c/99bef41f8e8d1d52b5cb34f2f193f1346192752b
https://git.kernel.org/stable/c/b621d17fe8b079574c773800148fb86907f3445d
https://git.kernel.org/stable/c/ff3b7e12bc9f50de05c9d82b5b79e23e5be888f1
https://lore.kernel.org/linux-cve-announce/2025091852-CVE-2022-50402-4c96@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2022-50402
https://www.cve.org/CVERecord?id=CVE-2022-50402

History

Fri, 19 Sep 2025 09:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Linux Linux linux Kernel
Vendors & Products		Linux Linux linux Kernel

Fri, 19 Sep 2025 00:15:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025091852-CVE-2022-50402-4c96@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2022-50402 https://www.cve.org/CVERecord?id=CVE-2022-50402
Metrics	threat_severity `None`	cvssV3_1 `{'score': 7.0, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}` threat_severity `Moderate`

Thu, 18 Sep 2025 16:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: drivers/md/md-bitmap: check the return value of md_bitmap_get_counter() Check the return value of md_bitmap_get_counter() in case it returns NULL pointer, which will result in a null pointer dereference. v2: update the check to include other dereference
Title		drivers/md/md-bitmap: check the return value of md_bitmap_get_counter()
References		https://git.kernel.org/stable/c/100caacfa0ed26e061954c90cdc835d42f709536 https://git.kernel.org/stable/c/21e9aac9a74d30907d44bae0d24c036cb3819406 https://git.kernel.org/stable/c/3bd548e5b819b8c0f2c9085de775c5c7bff9052f https://git.kernel.org/stable/c/5d8d046f3dba939e74e2414f009df426700430ed https://git.kernel.org/stable/c/99bef41f8e8d1d52b5cb34f2f193f1346192752b https://git.kernel.org/stable/c/b621d17fe8b079574c773800148fb86907f3445d https://git.kernel.org/stable/c/ff3b7e12bc9f50de05c9d82b5b79e23e5be888f1

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-09-18T16:03:48.184Z

Updated: 2025-10-29T10:50:17.752Z

Reserved: 2025-09-17T14:53:06.999Z

Link: CVE-2022-50402

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-09-18T16:15:43.257

Modified: 2025-09-19T16:00:27.847

Link: CVE-2022-50402

Redhat

Severity : Moderate

Publid Date: 2025-09-18T00:00:00Z

Links: CVE-2022-50402 - Bugzilla

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object