SB20251230265 - Improper locking in Linux kernel scsi driver
Published: December 30, 2025 Updated: December 30, 2025
Security Bulletin ID
SB20251230265
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Improper locking (CVE-ID: CVE-2022-50850)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the function in drivers/scsi/ipr.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/020b66023712b1cc42c6ab8b76e4ec13efe4a092
- https://git.kernel.org/stable/c/4399a8632e5f8f1f695d91d992c7d418fb451f07
- https://git.kernel.org/stable/c/5debd337f534b122f7c5eac6557a41b5636c9b51
- https://git.kernel.org/stable/c/8c739021b2022fbc40f71d3fa2e9162beef0c84a
- https://git.kernel.org/stable/c/e59da172059f05c594fda03a9e8a3a0e1f5116c0
- https://git.kernel.org/stable/c/e6f108bffc3708ddcff72324f7d40dfcd0204894
- https://git.kernel.org/stable/c/e965c4a60c1daa6e24355e35d78ca8e9f195196f
- https://git.kernel.org/stable/c/eccbec017c95b9b9ecd4c05c6f5234d1487c72cc
- https://git.kernel.org/stable/c/f4ba143b04a17559f2c85e18b47db117f40d8cf3
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.163