Linux Kernel Driver Vulnerability in alx
CVE-2022-50498

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 4 October 2025

What is CVE-2022-50498?

A vulnerability exists in the Linux kernel's alx driver, where the driver fails to hold the rtnl_lock during its internal close and re-open functions during suspend/resume. This oversight can lead to assertion failures in the network stack, specifically triggering an RTNL assertion error. Although the driver has its own locking mechanism and does not change the number of transmit queues, it is necessary to address this issue to avoid unnecessary errors in the logs.

Affected Version(s)

Linux 4a5fe57e775188be96359a1934501be45fe5f705 < 6f1991a940b90753b34570f093a21dba366e8cc0

Linux 4a5fe57e775188be96359a1934501be45fe5f705

References

https://git.kernel.org/stable/c/6f1991a940b90753b34570f09...

https://git.kernel.org/stable/c/a845a0c4bdece2c0073ecea2f...

https://git.kernel.org/stable/c/c0323c0fd07804d5874699e93...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 4, 2025
Vulnerability Reserved
Oct 4, 2025

JSON