7.8

CVE-2022-50470

EPSS 0.02%
Veröffentlicht 04.10.2025 15:16:32
Zuletzt bearbeitet 23.01.2026 16:37:44
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

xhci: Remove device endpoints from bandwidth list when freeing the device

Endpoints are normally deleted from the bandwidth list when they are
dropped, before the virt device is freed.

If xHC host is dying or being removed then the endpoints aren't dropped
cleanly due to functions returning early to avoid interacting with a
non-accessible host controller.

So check and delete endpoints that are still on the bandwidth list when
freeing the virt device.

Solves a list_del corruption kernel crash when unbinding xhci-pci,
caused by xhci_mem_cleanup() when it later tried to delete already freed
endpoints from the bandwidth list.

This only affects hosts that use software bandwidth checking, which
currenty is only the xHC in intel Panther Point PCH (Ivy Bridge)

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 3.2 < 4.9.332

Linux ≫ Linux Kernel Version >= 4.10 < 4.14.298

Linux ≫ Linux Kernel Version >= 4.15 < 4.19.264

Linux ≫ Linux Kernel Version >= 4.20 < 5.4.223

Linux ≫ Linux Kernel Version >= 5.5 < 5.10.153

Linux ≫ Linux Kernel Version >= 5.11 < 5.15.77

Linux ≫ Linux Kernel Version >= 5.16 < 6.0.7

Linux ≫ Linux Kernel Version6.1 Updaterc1

Linux ≫ Linux Kernel Version6.1 Updaterc2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.055

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-415 Double Free

The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.

https://git.kernel.org/stable/c/5e4ce28ad907aa54f13b21d5f1dc490525957b0c

Patch

https://git.kernel.org/stable/c/f0de39474078adef6ece7a183e34c15ce2c1d8d1

Patch

https://git.kernel.org/stable/c/cebbc8d335d6bcc1316584f779c08f80287c6af8

Patch

https://git.kernel.org/stable/c/8f1cd9633d1f21efc13e8fc75be8f2b6bb85e38c

Patch

https://git.kernel.org/stable/c/678d2cc2041cc6ce05030852dce9ad42719abcfc

Patch

https://git.kernel.org/stable/c/c892a81c7424b4f6a660cb9c249d354ccf3afeca

Patch

https://git.kernel.org/stable/c/3bf860a41e0f2fcea0ac3aae8f7ef887a7994b70

Patch

https://git.kernel.org/stable/c/5aed5b7c2430ce318a8e62f752f181e66f0d1053

Patch

https://nvd.nist.gov/vuln/detail/CVE-2022-50470

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-50470

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-50470

EUVD