CVE & CISA-KEV Catalog

CVE-2022-50014

HIGH
7.0
CVSS v3
NVD

Description

In the Linux kernel, the following vulnerability has been resolved: mm/gup: fix FOLL_FORCE COW security issue and remove FOLL_COW Ever since the Dirty COW (CVE-2016-5195) security issue happened, we know that FOLL_FORCE can be possibly dangerous, especially if there are races that can be exploited by user space. Right now, it would be sufficient to have some code that sets a PTE of a R/O-mapped shared page dirty, in order for it to erroneously become writable by FOLL_FORCE. The implications of setting a write-protected PTE dirty might not be immediately obvious to everyone. And in fact ever since commit 9ae0f87d009c ("mm/shmem: unconditionally set pte dirty in mfill_atomic_install_pte"), we can use UFFDIO_CONTINUE to map a shmem page R/O while marking the pte dirty. This can be used by unprivileged user space to modify tmpfs/shmem file content even if the user does not have write permissions to the file, and to bypass memfd write sealing -- Dirty COW restricted to tmpfs/shmem (CVE-2022-2590). To fix such security issues for good, the insight is that we really only need that fancy retry logic (FOLL_COW) for COW mappings that are not writable (!VM_WRITE). And in a COW mapping, we really only broke COW if we have an exclusive anonymous page mapped. If we have something else mapped, or the mapped anonymous page might be shared (!PageAnonExclusive), we have to trigger a write fault to break COW. If we don't find an exclusive anonymous page when we retry, we have to trigger COW breaking once again because something intervened. Let's move away from this mandatory-retry + dirty handling and rely on our PageAnonExclusive() flag for making a similar decision, to use the same COW logic as in other kernel parts here as well. In case we stumble over a PTE in a COW mapping that does not map an exclusive anonymous page, COW was not properly broken and we have to trigger a fake write-fault to break COW. Just like we do in can_change_pte_writable() added via commit 64fe24a3e05e ("mm/mprotect: try avoiding write faults for exclusive anonymous pages when changing protection") and commit 76aefad628aa ("mm/mprotect: fix soft-dirty check in can_change_pte_writable()"), take care of softdirty and uffd-wp manually. For example, a write() via /proc/self/mem to a uffd-wp-protected range has to fail instead of silently granting write access and bypassing the userspace fault handler. Note that FOLL_FORCE is not only used for debug access, but also triggered by applications without debug intentions, for example, when pinning pages via RDMA. This fixes CVE-2022-2590. Note that only x86_64 and aarch64 are affected, because only those support CONFIG_HAVE_ARCH_USERFAULTFD_MINOR. Fortunately, FOLL_COW is no longer required to handle FOLL_FORCE. So let's just get rid of it. Thanks to Nadav Amit for pointing out that the pte_dirty() check in FOLL_FORCE code is problematic and might be exploitable. Note 1: We don't check for the PTE being dirty because it doesn't matter for making a "was COWed" decision anymore, and whoever modifies the page has to set the page dirty either way. Note 2: Kernels before extended uffd-wp support and before PageAnonExclusive (< 5.19) can simply revert the problematic commit instead and be safe regarding UFFDIO_CONTINUE. A backport to v5.19 requires minor adjustments due to lack of vma_soft_dirty_enabled().

How to fix

Remediation Available
linuxDebian
Fixed in:6.0.2-1CVE-2022-50014
Fixed in:6.0.2-1CVE-2022-50014
Fixed in:6.0.2-1CVE-2022-50014
bpftoolRed Hat / RHEL
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
bpftoolRocky
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
bpftool-debuginfoRocky
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
bpftool-debuginfoRed Hat / RHEL
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:7.0.0-284.11.1.el9_2RHSA-2023:2458
kernelRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernelRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64kRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64kRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-coreRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-coreRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debugRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debugRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debug-coreRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debug-coreRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debug-debuginfoRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debug-debuginfoRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debug-develRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debug-develRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debug-devel-matchedRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debug-devel-matchedRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debug-modulesRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debug-modulesRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debug-modules-coreRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debug-modules-coreRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debug-modules-extraRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debug-modules-extraRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debuginfoRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-debuginfoRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-develRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-develRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-devel-matchedRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-devel-matchedRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-modulesRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-modulesRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-modules-coreRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-modules-coreRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-modules-extraRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-64k-modules-extraRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-abi-stablelistsRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-abi-stablelistsRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-coreRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-coreRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debugRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debugRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-coreRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-coreRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-debuginfoRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-debuginfoRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-develRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-develRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-devel-matchedRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-devel-matchedRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-modulesRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-modulesRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-modules-coreRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-modules-coreRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-modules-extraRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-modules-extraRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-uki-virtRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debug-uki-virtRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debuginfoRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debuginfoRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debuginfo-common-aarch64Rocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debuginfo-common-aarch64Red Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debuginfo-common-ppc64leRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debuginfo-common-ppc64leRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debuginfo-common-s390xRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debuginfo-common-s390xRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debuginfo-common-x86_64Red Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-debuginfo-common-x86_64Rocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-develRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-develRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-devel-matchedRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-devel-matchedRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-docRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-docRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-modulesRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-modulesRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-modules-coreRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-modules-coreRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-modules-extraRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-modules-extraRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-toolsRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-toolsRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-tools-debuginfoRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-tools-debuginfoRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-tools-libsRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-tools-libsRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-tools-libs-develRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-tools-libs-develRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-uki-virtRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-uki-virtRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdumpRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdumpRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdump-coreRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdump-coreRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdump-debuginfoRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdump-debuginfoRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdump-develRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdump-develRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdump-devel-matchedRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdump-devel-matchedRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdump-modulesRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdump-modulesRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdump-modules-coreRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdump-modules-coreRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdump-modules-extraRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
kernel-zfcpdump-modules-extraRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
perfRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
perfRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
perf-debuginfoRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
perf-debuginfoRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
python3-perfRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
python3-perfRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
python3-perf-debuginfoRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
python3-perf-debuginfoRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
rtlaRocky
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
rtlaRed Hat / RHEL
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458
Fixed in:0:5.14.0-284.11.1.el9_2RHSA-2023:2458

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorLocal
Attack ComplexityHigh
Privileges RequiredLow
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityHigh
IntegrityHigh
AvailabilityHigh

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploit Intelligence

0.14%probability of exploitation in 30 days
4thpercentile

Low risk: more likely to be exploited than 4% of all known CVEs.

References

Related Vulnerabilities

Other CWE-362 (Race Condition) vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2024-6387High8.1100%-Fix
CVE-2023-36884High7.599%KEV + RansomFix
CVE-2018-15473Medium5.399%-Fix
CVE-2024-27983High8.287%-Fix
CVE-2014-0226Medium6.886%-Fix
CVE-2016-5195High7.084%KEVFix
Embed a live status badge for CVE-2022-50014
CVE-2022-50014 severity badge

Markdown

[![CVE-2022-50014](https://tridentstack.com/cve/badge/CVE-2022-50014.svg)](https://tridentstack.com/cve/CVE-2022-50014)

HTML

<a href="https://tridentstack.com/cve/CVE-2022-50014"><img src="https://tridentstack.com/cve/badge/CVE-2022-50014.svg" alt="CVE-2022-50014"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2025-11-14.