{ "dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": { "cveId": "CVE-2022-50821", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2025-12-30T12:06:07.131Z", "datePublished": "2025-12-30T12:08:35.564Z", "dateUpdated": "2026-05-11T19:25:46.202Z" }, "containers": { "cna": { "providerMetadata": { "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-11T19:25:46.202Z" }, "descriptions": [ { "lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: Don't leak netobj memory when gss_read_proxy_verf() fails" } ], "affected": [ { "product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": [ "net/sunrpc/auth_gss/svcauth_gss.c" ], "versions": [ { "version": "030d794bf49855f5e2a9e8dfbfad34211d1eb08b", "lessThan": "76f2497a2faa6a4e91efb94a7f55705b403273fd", "status": "affected", "versionType": "git" }, { "version": "030d794bf49855f5e2a9e8dfbfad34211d1eb08b", "lessThan": "aa91afe597401b78baa7d751c71eedb92c80bd4d", "status": "affected", "versionType": "git" }, { "version": "030d794bf49855f5e2a9e8dfbfad34211d1eb08b", "lessThan": "2cd6026e257362f030c8be57abaf7fc0049df60a", "status": "affected", "versionType": "git" }, { "version": "030d794bf49855f5e2a9e8dfbfad34211d1eb08b", "lessThan": "d01fa993eb7fbc305f0a9c3e8bfac6513efc13b6", "status": "affected", "versionType": "git" }, { "version": "030d794bf49855f5e2a9e8dfbfad34211d1eb08b", "lessThan": "67eb848161c2799f2007968ea3bc87adb15c9567", "status": "affected", "versionType": "git" }, { "version": "030d794bf49855f5e2a9e8dfbfad34211d1eb08b", "lessThan": "c9ded831e2552b9c3cab7e2591a190e94f9d29c0", "status": "affected", "versionType": "git" }, { "version": "030d794bf49855f5e2a9e8dfbfad34211d1eb08b", "lessThan": "da522b5fe1a5f8b7c20a0023e87b52a150e53bf5", "status": "affected", "versionType": "git" } ] }, { "product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": [ "net/sunrpc/auth_gss/svcauth_gss.c" ], "versions": [ { "version": "3.10", "status": "affected" }, { "version": "0", "lessThan": "3.10", "status": "unaffected", "versionType": "semver" }, { "version": "4.19.270", "lessThanOrEqual": "4.19.*", "status": "unaffected", "versionType": "semver" }, { "version": "5.4.229", "lessThanOrEqual": "5.4.*", "status": "unaffected", "versionType": "semver" }, { "version": "5.10.163", "lessThanOrEqual": "5.10.*", "status": "unaffected", "versionType": "semver" }, { "version": "5.15.87", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "semver" }, { "version": "6.0.17", "lessThanOrEqual": "6.0.*", "status": "unaffected", "versionType": "semver" }, { "version": "6.1.3", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "semver" }, { "version": "6.2", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix" } ] } ], "cpeApplicability": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "3.10", "versionEndExcluding": "4.19.270" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "3.10", "versionEndExcluding": "5.4.229" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "3.10", "versionEndExcluding": "5.10.163" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "3.10", "versionEndExcluding": "5.15.87" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "3.10", "versionEndExcluding": "6.0.17" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "3.10", "versionEndExcluding": "6.1.3" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "3.10", "versionEndExcluding": "6.2" } ] } ] } ], "references": [ { "url": "https://git.kernel.org/stable/c/76f2497a2faa6a4e91efb94a7f55705b403273fd" }, { "url": "https://git.kernel.org/stable/c/aa91afe597401b78baa7d751c71eedb92c80bd4d" }, { "url": "https://git.kernel.org/stable/c/2cd6026e257362f030c8be57abaf7fc0049df60a" }, { "url": "https://git.kernel.org/stable/c/d01fa993eb7fbc305f0a9c3e8bfac6513efc13b6" }, { "url": "https://git.kernel.org/stable/c/67eb848161c2799f2007968ea3bc87adb15c9567" }, { "url": "https://git.kernel.org/stable/c/c9ded831e2552b9c3cab7e2591a190e94f9d29c0" }, { "url": "https://git.kernel.org/stable/c/da522b5fe1a5f8b7c20a0023e87b52a150e53bf5" } ], "title": "SUNRPC: Don't leak netobj memory when gss_read_proxy_verf() fails", "x_generator": { "engine": "bippy-1.2.0" } } } }