{ "affected": [ { "database_specific": { "unresolved_ranges": [ { "events": [ { "introduced": "5.17" }, { "fixed": "5.17.1" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "7.0" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "35" } ] } ] }, "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "last_affected": "6.0" } ] }, "events": [ { "introduced": "0" }, { "last_affected": "4fe89d07dcc2804c8b562f6c7896a45643d34b2f" }, { "fixed": "cc16eecae687912238ee6efbff71ad31e2bc414e" } ], "repo": "https://github.com/torvalds/linux", "type": "GIT" } ] } ], "details": "jbd2_journal_wait_updates in fs/jbd2/transaction.c in the Linux kernel before 5.17.1 has a use-after-free caused by a transaction_t race condition.", "id": "CVE-2022-28796", "modified": "2026-04-01T23:08:12.403696718Z", "published": "2022-04-08T05:15:07.067Z", "references": [ { "type": "ADVISORY", "url": "https://security.netapp.com/advisory/ntap-20220506-0006/" }, { "type": "ADVISORY", "url": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.17.1" }, { "type": "FIX", "url": "https://github.com/torvalds/linux/commit/cc16eecae687912238ee6efbff71ad31e2bc414e" } ], "severity": [ { "score": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ] }