SB20251210119 - Improper locking in Linux kernel rds
Published: December 10, 2025 Updated: December 12, 2025
Security Bulletin ID
SB20251210119
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Improper locking (CVE-ID: CVE-2022-50676)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the rds_tcp_reset_callbacks() function in net/rds/tcp.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/2425007c0967a7c04b0dee7cce05ecf0ca869ad1
- https://git.kernel.org/stable/c/30bfa5aa7228eb1e67663d67e553627e572cc717
- https://git.kernel.org/stable/c/360aa7219285fac63dab99706a16f2daf3222abe
- https://git.kernel.org/stable/c/5d2ba255e93211e541373469dffbda7c99dfa0e5
- https://git.kernel.org/stable/c/a91b750fd6629354460282bbf5146c01b05c4859
- https://git.kernel.org/stable/c/afe7053c390fe8ff27d0c2ceaece5625283044ba
- https://git.kernel.org/stable/c/c380c28ab9b15fc53565909c814f6dd3e7f77c4b
- https://git.kernel.org/stable/c/da349221c4d2d4ac5f606c1c3b36d4ef0b3e6a0c
- https://git.kernel.org/stable/c/e3cb25d3ad08f5dbd53ce2b31720cad529944322
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.262