CVE-2022-50414

medium

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: fcoe: Fix transport not deattached when fcoe_if_init() fails fcoe_init() calls fcoe_transport_attach(&fcoe_sw_transport), but when fcoe_if_init() fails, &fcoe_sw_transport is not detached and leaves freed &fcoe_sw_transport on fcoe_transports list. This causes panic when reinserting module. BUG: unable to handle page fault for address: fffffbfff82e2213 RIP: 0010:fcoe_transport_attach+0xe1/0x230 [libfcoe] Call Trace: <TASK> do_one_initcall+0xd0/0x4e0 load_module+0x5eee/0x7210 ...

References

https://git.kernel.org/stable/c/d581303d6f8d4139513105d73dd65f26c6707160

https://git.kernel.org/stable/c/cf74d1197c0e3d2f353faa333e9e2847c73713f1

https://git.kernel.org/stable/c/be5f1a82ad6056db22c86005dc4cac22a20deeef

https://git.kernel.org/stable/c/b5cc59470df64f26ad397dbb71cbf130cf489edf

https://git.kernel.org/stable/c/aef82d16be5a353d913163f26fc4385e296be2b8

https://git.kernel.org/stable/c/4155658cee394b22b24c6d64e49247bf26d95b92

https://git.kernel.org/stable/c/22e8c7a56bb1cd2ed0beaaccb34282ac9cbbe27e

https://git.kernel.org/stable/c/1dc499c615aa87dc46a3f2d1f91d2d358e55f3e3

https://git.kernel.org/stable/c/09a60f908d8b6497f618113b7c3c31267dc90911

Details

Source: Mitre, NVD

Published: 2025-09-18

Updated: 2025-09-19

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00033