CVE-2022-50344: 
Linux Kernel vulnerability analysis and mitigation

CVE-2022-50344 is a vulnerability in the Linux kernel's ext4 filesystem component that was discovered and disclosed in September 2025. The vulnerability specifically affects the ext4writeinfo function, causing a null pointer dereference issue (NVD).

The vulnerability manifests as a null pointer dereference in the ext4writeinfo function. The issue occurs during the filesystem unmounting process when sb->sroot is set to NULL before it's used in subsequent operations. The vulnerability is triggered in the call trace sequence: exittousermodeprepare > taskworkrun > cleanupmnt > deactivatesuper > killblocksuper > genericshutdownsuper, where the null pointer dereference happens when attempting to access sroot->dinode after sroot has been nullified (NVD).

The vulnerability affects various Linux kernel versions across multiple distributions. Ubuntu has marked this as a medium priority issue, with impacts observed in multiple kernel variants including the main Linux kernel, AWS, Azure, and Oracle specific kernels (Ubuntu).

The issue has been fixed by modifying the code to use ext4journalstartsb directly, avoiding the use of sroot. Multiple Linux distributions have released patches, including Ubuntu which has fixed the vulnerability in various kernel versions: 5.15.0-60.66 for 22.04 LTS, 5.4.0-139.156 for 20.04 LTS, and 4.15.0-204.215 for 18.04 LTS (Ubuntu).