Linux Kernel Vulnerability in Skmsg Functionality
CVE-2022-50363

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 17 September 2025

What is CVE-2022-50363?

A vulnerability in the Linux kernel related to the skmsg functionality has been identified, specifically concerning the alloc_sk_msg() function. This issue arises when alloc_sk_msg() is invoked from a non-sleepable context, leading to a risk of instability. Proper handling requires callers to pass a gfp_t argument to ensure memory allocation functions are contextually appropriate, thereby preventing potential deadlocks or system crashes. Reports indicate that the bug can lead to unexpected behavior during kernel operations, primarily impacting systems relying on specific networking features.

Affected Version(s)

Linux 43312915b5ba20741617dd2119e835205fa8580c < 693ddd6ffc05b228ea1638f9d757c5d3541f9446

Linux 43312915b5ba20741617dd2119e835205fa8580c < 2d1f274b95c6e4ba6a813b3b8e7a1a38d54a0a08

Linux 6.0

References

https://git.kernel.org/stable/c/693ddd6ffc05b228ea1638f9d...

https://git.kernel.org/stable/c/2d1f274b95c6e4ba6a813b3b8...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 17, 2025
Vulnerability Reserved
Sep 17, 2025