5.5

CVE-2022-50420

EPSS 0.02%
Veröffentlicht 01.10.2025 12:15:33
Zuletzt bearbeitet 11.12.2025 18:24:22
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

crypto: hisilicon/hpre - fix resource leak in remove process

In hpre_remove(), when the disable operation of qm sriov failed,
the following logic should continue to be executed to release the
remaining resources that have been allocated, instead of returning
directly, otherwise there will be resource leakage.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 5.5 < 5.15.86

Linux ≫ Linux Kernel Version >= 5.16 < 6.0.16

Linux ≫ Linux Kernel Version >= 6.1 < 6.1.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.034

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

https://git.kernel.org/stable/c/2b3e3ecdb402ff1053ee25b598ff21b9ddf4384f

Patch

https://git.kernel.org/stable/c/45e6319bd5f2154d8b8c9f1eaa4ac030ba0d330c

Patch

https://git.kernel.org/stable/c/4e0de941d252d4e7c985981e78480c8d6f020b64

Patch

https://git.kernel.org/stable/c/cb873c93a7ad27681920bf062ef052fca1e8d5b1

Patch

https://nvd.nist.gov/vuln/detail/CVE-2022-50420

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-50420

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-50420

EUVD