vulnerability

Debian: CVE-2022-49316: linux -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:L/AC:L/Au:S/C:C/I:N/A:C)	Feb 27, 2025	Feb 27, 2025	Mar 17, 2025

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:N/A:C)

Published

Feb 27, 2025

Added

Feb 27, 2025

Modified

Mar 17, 2025

Description

In the Linux kernel, the following vulnerability has been resolved:

NFSv4: Don't hold the layoutget locks across multiple RPC calls

When doing layoutget as part of the open() compound, we have to be
careful to release the layout locks before we can call any further RPC
calls, such as setattr(). The reason is that those calls could trigger
a recall, which could deadlock.

Solution

debian-upgrade-linux

References

CVE-2022-49316
https://attackerkb.com/topics/CVE-2022-49316

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today