scsi: fcoe: Fix transport not deattached when fcoe_if_init() fails
CVE-2022-50414

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 September 2025

What is CVE-2022-50414?

In the Linux kernel, the following vulnerability has been resolved:

scsi: fcoe: Fix transport not deattached when fcoe_if_init() fails

fcoe_init() calls fcoe_transport_attach(&fcoe_sw_transport), but when fcoe_if_init() fails, &fcoe_sw_transport is not detached and leaves freed &fcoe_sw_transport on fcoe_transports list. This causes panic when reinserting module.

BUG: unable to handle page fault for address: fffffbfff82e2213 RIP: 0010:fcoe_transport_attach+0xe1/0x230 [libfcoe] Call Trace: do_one_initcall+0xd0/0x4e0 load_module+0x5eee/0x7210 ...

Affected Version(s)

Linux 78a582463c1e3a262aeaf2a291e06a93a7b34212

Linux 78a582463c1e3a262aeaf2a291e06a93a7b34212

Linux 78a582463c1e3a262aeaf2a291e06a93a7b34212

References

https://git.kernel.org/stable/c/d581303d6f8d4139513105d73...
https://git.kernel.org/stable/c/b5cc59470df64f26ad397dbb7...
https://git.kernel.org/stable/c/cf74d1197c0e3d2f353faa333...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2022-50414 : Transport Detachment Issue in Linux Kernel Affecting FCoE Functionality