SB20250620208 - Incorrect calculation in Linux kernel ext2
Published: June 20, 2025 Updated: June 21, 2025
Security Bulletin ID
SB20250620208
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Incorrect calculation (CVE-ID: CVE-2022-50205)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to incorrect calculation within the ext2_fill_super() function in fs/ext2/super.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/07303a9abe3a997d9864fb4315e34b5acfe8fc25
- https://git.kernel.org/stable/c/0bcdc31094a12b4baf59e241feabc9787cf635fa
- https://git.kernel.org/stable/c/5e63c5fe9123fa76ffaeff26c211308736ec3a07
- https://git.kernel.org/stable/c/7a48fdc88a3c35e046a6a0a38eba00f21c65b16e
- https://git.kernel.org/stable/c/96b18d3a1be0354ccce43f0ef61b5a3d7e432552
- https://git.kernel.org/stable/c/b3f423683818cfe15de14d5d9dff44148ff16bbf
- https://git.kernel.org/stable/c/d08bb199a406424a8ed0009efdf41710e6d849ee
- https://git.kernel.org/stable/c/fa78f336937240d1bc598db817d638086060e7e9
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.291
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.256
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.137
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.61
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.18.18
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.19.2
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.211
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.0