Shift-Out-of-Bounds Vulnerability in Linux Kernel JFS by Linux Foundation
CVE-2022-50333

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 15 September 2025

What is CVE-2022-50333?

A shift-out-of-bounds vulnerability exists in the JFS filesystem of the Linux kernel, where improper validation of parameters introduced by syzbot could lead to exploitation through malformed bmap descriptors. This vulnerability underscores the importance of input validation and the necessity for robust guarding mechanisms in filesystem operations to prevent malicious interference.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 0183c8f46ab5bcd0740f41c87f5141c6ca2bf1bb

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 624843f1bac448150f6859999c72c4841c14a2e3

References

https://git.kernel.org/stable/c/f8d4d0bac603616e2fa4a3907...

https://git.kernel.org/stable/c/0183c8f46ab5bcd0740f41c87...

https://git.kernel.org/stable/c/624843f1bac448150f6859999...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 15, 2025
Vulnerability Reserved
Sep 15, 2025