CVE-2022-50235 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved:

NFSD: Protect against send buffer overflow in NFSv2 READDIR

Restore the previous limit on the @count argument to prevent a
buffer overflow attack.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

No data.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/00b4492686e0497fdb924a9d4c8f6f99377e176c
https://git.kernel.org/stable/c/0e57d696f60dee6117a8ace0cac7c5761d375277
https://git.kernel.org/stable/c/c2a878095b5c6f04f90553a3c45872f990dab14e
https://git.kernel.org/stable/c/dc7f225090c29a5f3b9419b1af32846a201555e7
https://git.kernel.org/stable/c/f59c74df82f6ac9d2ea4e01aa3ae7c6c4481652d

History

Mon, 15 Sep 2025 14:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: NFSD: Protect against send buffer overflow in NFSv2 READDIR Restore the previous limit on the @count argument to prevent a buffer overflow attack.
Title		NFSD: Protect against send buffer overflow in NFSv2 READDIR
References		https://git.kernel.org/stable/c/00b4492686e0497fdb924a9d4c8f6f99377e176c https://git.kernel.org/stable/c/0e57d696f60dee6117a8ace0cac7c5761d375277 https://git.kernel.org/stable/c/c2a878095b5c6f04f90553a3c45872f990dab14e https://git.kernel.org/stable/c/dc7f225090c29a5f3b9419b1af32846a201555e7 https://git.kernel.org/stable/c/f59c74df82f6ac9d2ea4e01aa3ae7c6c4481652d

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-09-15T14:01:41.043Z

Updated: 2025-09-15T14:01:41.043Z

Reserved: 2025-06-18T10:57:27.432Z

Link: CVE-2022-50235

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-09-15T14:15:33.877

Modified: 2025-09-15T15:21:42.937

Link: CVE-2022-50235

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2022-50235", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2025-06-18T10:57:27.432Z", "datePublished": "2025-09-15T14:01:41.043Z", "dateUpdated": "2025-09-15T14:01:41.043Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-09-15T14:01:41.043Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Protect against send buffer overflow in NFSv2 READDIR\n\nRestore the previous limit on the @count argument to prevent a\nbuffer overflow attack."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["fs/nfsd/nfsproc.c"], "versions": [{"version": "9e291a6a28d32545ed2fd959a8165144d1724df1", "lessThan": "0e57d696f60dee6117a8ace0cac7c5761d375277", "status": "affected", "versionType": "git"}, {"version": "eabc0aab98e5218ceecd82069b0d6fdfff5ee885", "lessThan": "dc7f225090c29a5f3b9419b1af32846a201555e7", "status": "affected", "versionType": "git"}, {"version": "53b1119a6e5028b125f431a0116ba73510d82a72", "lessThan": "c2a878095b5c6f04f90553a3c45872f990dab14e", "status": "affected", "versionType": "git"}, {"version": "53b1119a6e5028b125f431a0116ba73510d82a72", "lessThan": "f59c74df82f6ac9d2ea4e01aa3ae7c6c4481652d", "status": "affected", "versionType": "git"}, {"version": "53b1119a6e5028b125f431a0116ba73510d82a72", "lessThan": "00b4492686e0497fdb924a9d4c8f6f99377e176c", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["fs/nfsd/nfsproc.c"], "versions": [{"version": "5.16", "status": "affected"}, {"version": "0", "lessThan": "5.16", "status": "unaffected", "versionType": "semver"}, {"version": "5.15.75", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.19.17", "lessThanOrEqual": "5.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.0.3", "lessThanOrEqual": "6.0.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.1", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.15.12", "versionEndExcluding": "5.15.75"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.16", "versionEndExcluding": "5.19.17"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.16", "versionEndExcluding": "6.0.3"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.16", "versionEndExcluding": "6.1"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/0e57d696f60dee6117a8ace0cac7c5761d375277"}, {"url": "https://git.kernel.org/stable/c/dc7f225090c29a5f3b9419b1af32846a201555e7"}, {"url": "https://git.kernel.org/stable/c/c2a878095b5c6f04f90553a3c45872f990dab14e"}, {"url": "https://git.kernel.org/stable/c/f59c74df82f6ac9d2ea4e01aa3ae7c6c4481652d"}, {"url": "https://git.kernel.org/stable/c/00b4492686e0497fdb924a9d4c8f6f99377e176c"}], "title": "NFSD: Protect against send buffer overflow in NFSv2 READDIR", "x_generator": {"engine": "bippy-1.2.0"}}}}