5.5

CVE-2022-50469

EPSS 0.02%
Veröffentlicht 01.10.2025 12:15:40
Zuletzt bearbeitet 16.01.2026 19:15:33
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

staging: rtl8723bs: fix potential memory leak in rtw_init_drv_sw()

In rtw_init_drv_sw(), there are various init functions are called to
populate the padapter structure and some checks for their return value.
However, except for the first one error path, the other five error paths
do not properly release the previous allocated resources, which leads to
various memory leaks.

This patch fixes them and keeps the success and error separate.
Note that these changes keep the form of `rtw_init_drv_sw()` in
"drivers/staging/r8188eu/os_dep/os_intfs.c". As there is no proper device
to test with, no runtime testing was performed.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 4.12 < 5.15.75

Linux ≫ Linux Kernel Version >= 5.16 < 5.19.17

Linux ≫ Linux Kernel Version >= 6.0 < 6.0.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.05

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

https://git.kernel.org/stable/c/5a5aa9cce621e2c0e25a1e5d72d6be1749167cc0

Patch

https://git.kernel.org/stable/c/6b2052b365f8035ab7f09ac24b5b499002b298cb

Patch

https://git.kernel.org/stable/c/b4573a2bad3c3e2643ef3939079eb7035a30e6ee

Patch

https://git.kernel.org/stable/c/d95d1526d9f06978c1a7186810a5490d72c62742

Patch

https://nvd.nist.gov/vuln/detail/CVE-2022-50469

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-50469

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-50469

EUVD