VDB

CISA-2022-50414

CISA-2022-50414 PUBLISHED CVSS 5.5 MEDIUM

Reported by Linux · Published September 18, 2025

In the Linux kernel, the following vulnerability has been resolved: scsi: fcoe: Fix transport not deattached when fcoe_if_init() fails fcoe_init() calls fcoe_transport_attach(&fcoe_sw_transport), but when fcoe_if_init() fails, &fcoe_sw_transport is not detached and leaves freed &fcoe_sw_transport on fcoe_transports list. This causes panic when reinserting module. BUG: unable to handle page fault for address: fffffbfff82e2213 RIP: 0010:fcoe_transport_attach+0xe1/0x230 [libfcoe] Call Trace: <TASK> do_one_initcall+0xd0/0x4e0 load_module+0x5eee/0x7210 ...

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
LinuxLinux78a582463c1e3a262aeaf2a291e06a93a7b34212, 78a582463c1e3a262aeaf2a291e06a93a7b34212, 78a582463c1e3a262aeaf2a291e06a93a7b34212
LinuxLinux2.6.39, 0, 4.9.337
LinuxLinux5.10.163, 78a582463c1e3a262aeaf2a291e06a93a7b34212, 78a582463c1e3a262aeaf2a291e06a93a7b34212
linuxlinux_kernel2.6.39, 2.6.39, 2.6.39

Timeline

  • Sep 18, 2025 CVE Published
  • Jan 14, 2026 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›