What is CVE-2022-50712?

CVE-2022-50712 is a unscored severity Linux kernel vulnerability, affecting Linux kernel versions from 6.0 onward and patched in 6.0.16, 6.1.2 and 6.2. CVE-2022-50712 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2022-50712?

CVE-2022-50712 has a CVSS score of pending NVD analysis out of 10, rated awaiting scoring severity.

Is there a patch available for CVE-2022-50712?

Yes, CVE-2022-50712 has been patched. Fixed versions include 6.0.16, 6.1.2 and 6.2. If you are running Linux kernel 6.0 or later up to the fix versions, apply the relevant patch for your kernel branch.

Is CVE-2022-50712 actively exploited?

CVE-2022-50712 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

CVE-2022-50712

In the Linux kernel, the following vulnerability has been resolved: devlink: hold region lock when flushing snapshots Netdevsim triggers a splat on reload, when it destroys regions with snapshots pending: WARNING: CPU: 1 PID: 787 at net/core/devlink.c:6291 devlink_region_snapshot_del+0x12e/0x140 CPU: 1 PID: 787 Comm: devlink Not tainted 6.1.0-07460-g7ae9888d6e1c #580 RIP: 0010:devlink_region_snapshot_del+0x12e/0x140 Call Trace: <TASK> devl_region_destroy+0x70/0x140 nsim_dev_reload_down+0x2f/0x60 [netdevsim] devlink_reload+0x1f7/0x360 devlink_nl_cmd_reload+0x6ce/0x860 genl_family_rcv_msg_doit.isra.0+0x145/0x1c0 This is the locking assert in devlink_region_snapshot_del(), we're supposed to be holding the region->snapshot_lock here.

Package Linux Kernel

Published 2025-12-24

Last modified 2026-04-15

Patch available

Yes

Affected versions

Linux kernel versions 6.0 and later are affected. Fixed in 6.0.16, 6.1.2, 6.2 and their respective stable series.

Affected from

≥ 6.0

Fixed in

✓ 6.0.16 6.0.x ✓ 6.1.2 6.1.x ✓ 6.2

References

The following references provide additional information about CVE-2022-50712 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Kernel patch commit
https://git.kernel.org/stable/c/49383d4e59bb704341aaa1d51440ccce58270e61
Patch
Kernel patch commit
https://git.kernel.org/stable/c/6298cab4d80bfdb6fe01fe31fd9f0ba26317fdae
Patch
Kernel patch commit
https://git.kernel.org/stable/c/b4cafb3d2c740f8d1b1234b43ac4a60e5291c960
Patch

Frequently asked questions

What is CVE-2022-50712?

CVE-2022-50712 is a unscored severity Linux kernel vulnerability . It affects Linux kernel versions from 6.0 onward and has been patched in 6.0.16, 6.1.2 and 6.2. CVE-2022-50712 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
Is there a patch available for CVE-2022-50712?

Yes — CVE-2022-50712 has been patched. Fixed versions include 6.0.16, 6.1.2 and 6.2. If you are running Linux kernel 6.0 or later up to the fix versions, apply the relevant patch for your kernel branch.
Is CVE-2022-50712 actively exploited?

No — CVE-2022-50712 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.