github - ghsa-hf96-p8v5-j6q3

ghsa-hf96-p8v5-j6q3

Vulnerability from github

Published

2025-12-30 15:30

Modified

2025-12-30 15:30

Details

In the Linux kernel, the following vulnerability has been resolved:

NFSv4: Fix a credential leak in _nfs4_discover_trunking()

Show details on source website

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2022-50853"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-12-30T13:16:00Z",
    "severity": null
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4: Fix a credential leak in _nfs4_discover_trunking()",
  "id": "GHSA-hf96-p8v5-j6q3",
  "modified": "2025-12-30T15:30:28Z",
  "published": "2025-12-30T15:30:28Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-50853"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/b247a9828f6607d41189fa6c2a3be754d33cae86"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/c6aca4c7ba8f6d40a0cfeeb09160dd8efdf97c64"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/dfad5d5e7511933c2ae3d12a8131840074c5a73d"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/e83458fce080dc23c25353a1af90bfecf79c7369"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CVE-2022-50853 (GCVE-0-2022-50853)

Vulnerability from cvelistv5

Published

2025-12-30 12:15

Modified

2025-12-30 12:15

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix a credential leak in _nfs4_discover_trunking()

References

URL

Tags

	https://git.kernel.org/stable/c/c6aca4c7ba8f6d40a0cfeeb09160dd8efdf97c64
	https://git.kernel.org/stable/c/dfad5d5e7511933c2ae3d12a8131840074c5a73d
	https://git.kernel.org/stable/c/b247a9828f6607d41189fa6c2a3be754d33cae86
	https://git.kernel.org/stable/c/e83458fce080dc23c25353a1af90bfecf79c7369

Impacted products

Vendor

Product

Version

Version: ead049562758cc415437c0e99b09ce5eb2ab3dc0
Version: 4f40a5b5544618b096d1611a18219dd91fd57f80
Version: 4f40a5b5544618b096d1611a18219dd91fd57f80
Version: 4f40a5b5544618b096d1611a18219dd91fd57f80
Version: 2f42531f545f2670192b894d14d50e0539e47e24

Version: 5.19

Show details on NVD website

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/nfs/nfs4proc.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "c6aca4c7ba8f6d40a0cfeeb09160dd8efdf97c64",
              "status": "affected",
              "version": "ead049562758cc415437c0e99b09ce5eb2ab3dc0",
              "versionType": "git"
            },
            {
              "lessThan": "dfad5d5e7511933c2ae3d12a8131840074c5a73d",
              "status": "affected",
              "version": "4f40a5b5544618b096d1611a18219dd91fd57f80",
              "versionType": "git"
            },
            {
              "lessThan": "b247a9828f6607d41189fa6c2a3be754d33cae86",
              "status": "affected",
              "version": "4f40a5b5544618b096d1611a18219dd91fd57f80",
              "versionType": "git"
            },
            {
              "lessThan": "e83458fce080dc23c25353a1af90bfecf79c7369",
              "status": "affected",
              "version": "4f40a5b5544618b096d1611a18219dd91fd57f80",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "2f42531f545f2670192b894d14d50e0539e47e24",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/nfs/nfs4proc.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.19"
            },
            {
              "lessThan": "5.19",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.86",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.*",
              "status": "unaffected",
              "version": "6.0.16",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.2",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.86",
                  "versionStartIncluding": "5.15.77",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0.16",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.2",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.2",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.18.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4: Fix a credential leak in _nfs4_discover_trunking()"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-12-30T12:15:29.104Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/c6aca4c7ba8f6d40a0cfeeb09160dd8efdf97c64"
        },
        {
          "url": "https://git.kernel.org/stable/c/dfad5d5e7511933c2ae3d12a8131840074c5a73d"
        },
        {
          "url": "https://git.kernel.org/stable/c/b247a9828f6607d41189fa6c2a3be754d33cae86"
        },
        {
          "url": "https://git.kernel.org/stable/c/e83458fce080dc23c25353a1af90bfecf79c7369"
        }
      ],
      "title": "NFSv4: Fix a credential leak in _nfs4_discover_trunking()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-50853",
    "datePublished": "2025-12-30T12:15:29.104Z",
    "dateReserved": "2025-12-30T12:06:07.134Z",
    "dateUpdated": "2025-12-30T12:15:29.104Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Log in or create an account to share your comment.

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.