CVE-2022-50666 | RDMA/siw: Fix QP destroy to wait for all references dropped.

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix QP destroy to wait for all references dropped. Delay QP destroy completion until all siw references to QP are dropped. The calling RDMA core will free QP structure after successful return from siw_qp_destroy() call, so siw must not hold any remaining reference to the QP upon return. A use-after-free was encountered in xfstest generic/460, while testing NFSoRDMA. Here, after a TCP connection drop by peer, the triggered siw_cm_work_handler got delayed until after QP destroy call, referencing a QP which has already freed.

Published: 2025-12-09 Last update: 2026-04-15 Assigner: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

NVD Status：Deferred，CVE State: published

View at NVD, CVE.org, EUVD

Conclusion & alert: CVE-2022-50666 is rated Low Risk (3.6/100): low exploitation likelihood (EPSS 0.02%). Mandatory action: Low composite risk—no urgent action required; patch on your normal maintenance cycle and revisit priority if CVSS or EPSS increases.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2022-50666

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2025-12-09	—	0.02%	—

Full EPSS history (1 record total)

Common vulnerability scoring system (CVSS) metrics for CVE-2022-50666

CVSS metrics for this CVE.

No CVSS data in dataset for this CVE.

Weakness enumeration for CVE-2022-50666

OS Trackers for CVE-2022-50666

vendor	priority	summary	link
`debian`	not yet assigned	CVE-2022-50666 not yet assigned priority: Debian including 1 source packages (linux), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 4, open 1.	https://security-tracker.debian.org/tracker/CVE-2022-50666
`redhat`	medium	—	https://access.redhat.com/security/cve/CVE-2022-50666
`suse`	medium	—	https://www.suse.com/security/cve/CVE-2022-50666/
`ubuntu`	medium	CVE-2022-50666 medium priority: Ubuntu including 157 source packages (linux, linux-allwinner-5.19, …), 1405 status rows across 9 suites (bionic, focal, jammy, noble, plucky, questing, trusty, upstream, xenial): DNE 1010, ignored 172, released 106, not-affected 94, needed 22, needs-triage 1.	https://ubuntu.com/security/CVE-2022-50666

Affected software / configurations for CVE-2022-50666

Vendor	Product	Version	Raw CPE
No affected products in dataset.

References for CVE-2022-50666

URL	Tags
https://git.kernel.org/stable/c/0ed8bf9d0bb19f3f5eedd73f04aaf5bba9ac0737
https://git.kernel.org/stable/c/5c75d608fad58301b63e7d69200c13c3a1d411da
https://git.kernel.org/stable/c/74ad141e995a730760b1bcfa14854b7f1057d6bc
https://git.kernel.org/stable/c/a3c278807a459e6f50afee6971cabe74cccfb490

cvelogic Threat Intelligence