CVE-2022-50136

low-risk

Published 2025-06-18

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix duplicated reported IW_CM_EVENT_CONNECT_REPLY event If siw_recv_mpa_rr returns -EAGAIN, it means that the MPA reply hasn't been received completely, and should not report IW_CM_EVENT_CONNECT_REPLY in this case. This may trigger a call trace in iw_cm. A simple way to trigger this: server: ib_send_lat client: ib_send_lat -R <server_ip> The call trace looks like this: kernel BUG at drivers/infiniband/core/iwcm.c:894! invalid opcode: 0000 [#1] PREEMPT SMP NOPTI <...> Workqueue: iw_cm_wq cm_work_handler [iw_cm] Call Trace: <TASK> cm_work_handler+0x1dd/0x370 [iw_cm] process_one_work+0x1e2/0x3b0 worker_thread+0x49/0x2e0 ? rescuer_thread+0x370/0x370 kthread+0xe5/0x110 ? kthread_complete_and_exit+0x20/0x20 ret_from_fork+0x1f/0x30 </TASK>

Do I need to act?

0.02% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (1)

Linux Kernel

Affected Vendors

Linux

References (6)

Patch https://git.kernel.org/stable/c/0066246d2d7e2619f3ecf3cf07333c59e6e7d84d

Patch https://git.kernel.org/stable/c/11edf0bba15ea9df49478affec7974f351bb2f6e

Patch https://git.kernel.org/stable/c/1434de50a5d9dab91c8ce031bc23b3e2178379c5

Patch https://git.kernel.org/stable/c/3056fc6c32e613b760422b94c7617ac9a24a4721

Patch https://git.kernel.org/stable/c/9ade92ddaf2347fb34298c02080caaa3cdd7c27b

Patch https://git.kernel.org/stable/c/f6e26e1a5f600b760dc32135d3fac846eabe09e7

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal