CIFS Vulnerability in Linux Kernel Affecting File System Operations
CVE-2022-50351

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 September 2025

What is CVE-2022-50351?

A vulnerability exists in the CIFS implementation within the Linux kernel, where an xid (transaction ID) leak may occur during the creation of CIFS file structures when the cifs subsystem is already shut down. This leak can happen if the xid is not properly freed before returning control, potentially leading to resource management issues. The issue has been addressed in the latest versions of the Linux kernel, ensuring that xid values are correctly managed even in scenarios where CIFS operations are interrupted.

Affected Version(s)

Linux 087f757b0129850c99cc9116df4909dac1bce871 < 593d877c39aa9f3fe1a4b5b022492886d7d700ec

Linux 087f757b0129850c99cc9116df4909dac1bce871 < 92aa09c86ef297976a3c27c6574c0839418dc2c4

Linux 087f757b0129850c99cc9116df4909dac1bce871

References

https://git.kernel.org/stable/c/593d877c39aa9f3fe1a4b5b02...
https://git.kernel.org/stable/c/92aa09c86ef297976a3c27c65...
https://git.kernel.org/stable/c/fee0fb1f15054bb6a0ede452a...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2022-50351 : CIFS Vulnerability in Linux Kernel Affecting File System Operations