Linux Kernel Vulnerability in NBD Device Handling by Vendor Linux
CVE-2022-50314
What is CVE-2022-50314?
An issue was identified in the Linux kernel where the NBD (Network Block Device) could hang due to improper handling of signal interrupts during device control operations. The vulnerability arises specifically when the 'nbd_start_device_ioctl()' function is waiting for certain conditions related to IO operations. This waiting condition may not be resolved, leading to a hung task. A patch has been implemented to ensure that the queue is cleared properly, preventing potential disruptions in device communication and enhancing the overall stability of the NBD device operations.
Affected Version(s)
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 3ba3846cb3e2fb3c6fbf79e998472821b298419e
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 3575949513ea3b387b30dac1e69468a923c86caf