CVE-2022-2978 log

Severity Unknown
Remote Unknown
Type Unknown
In alloc_inode, inode_init_always() could return -ENOMEM if security_inode_alloc() fails, which causes inode->i_private uninitialized. Then nilfs_is_metadata_file_inode() returns true and nilfs_free_inode() wrongly calls nilfs_mdt_destroy(), which frees the uninitialized inode->i_private and leads to crashes(e.g., UAF/GPF)
Group Package Affected Fixed Severity Status Ticket
AVG-2836 linux-zen 6.0.12-1 6.2-1 High Unknown
AVG-2835 linux-hardened 6.0.19-1 6.2-1 High Unknown
AVG-2834 linux-lts 5.15.94-1 6.2-1 High Unknown
AVG-2837 linux 6.0.12-1 6.2-1 High Fixed