Null Pointer Dereference in Linux Kernel's NTFS Handling
CVE-2022-50336

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
15 September 2025

What is CVE-2022-50336?

A vulnerability exists in the Linux kernel's handling of NTFS metadata files, where a null pointer check was required for certain edge cases. This flaw can lead to a null pointer dereference (NPD) when reading metadata from malformed NTFS images. The addition of a null pointer check for the attr_load_runs_vcn function enhances the kernel's robustness against potential exploitation, mitigating risk associated with the improper handling of these file system structures.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 4534a70b7056fd4b9a1c6db5a4ce3c98546b291e

Linux 4534a70b7056fd4b9a1c6db5a4ce3c98546b291e < 26425414bfe5d302413b956ab2469176d4ff53aa

Linux 4534a70b7056fd4b9a1c6db5a4ce3c98546b291e < 1621734cd3047f7979da1d7d5c5444d583d8b0ed

References

https://git.kernel.org/stable/c/ea6b3598406c58c5d09b6f432...
https://git.kernel.org/stable/c/26425414bfe5d302413b956ab...
https://git.kernel.org/stable/c/1621734cd3047f7979da1d7d5...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.