-

CVE-2022-50484

EPSS 0.03%
Published 04.10.2025 15:16:42
Last modified 06.10.2025 14:56:47
Source 416baaa9-dc9f-4396-8d5f-8c081f
Teams watchlist Login
Open Login

In the Linux kernel, the following vulnerability has been resolved:

ALSA: usb-audio: Fix potential memory leaks

When the driver hits -ENOMEM at allocating a URB or a buffer, it
aborts and goes to the error path that releases the all previously
allocated resources.  However, when -ENOMEM hits at the middle of the
sync EP URB allocation loop, the partially allocated URBs might be
left without released, because ep->nurbs is still zero at that point.

Fix it by setting ep->nurbs at first, so that the error handler loops
over the full URB list.

Affected products Warnungen 0 Metrics 1 CWE 0 References 12

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

VendorLinux

≫

Product Linux

Default Statusunaffected

Version < 0604e5e5537af099ea2f6dfd892afe5c92db8a80

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 28d8d267af5d73f91d7640cbdb4024703256e36c

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 46f0aed47673e275d682af60ed26dcc28add8eae

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 988ec0cd0a2643c25c1658f7c33de2e15a5a2e31

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < bc1d16d282bca421c6fc31de4b8fd412010f01bd

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 0672215994e2347a9b4f145e2bc1709b1e01cee3

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < faa8c1ed77d0169955b9b3516b714cc5fb512f27

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < e4442410f76d66b9f7e854010bce04853f665324

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 6382da0828995af87aa8b8bef28cc61aceb4aff3

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

VendorLinux

≫

Product Linux

Default Statusaffected

Version <= 4.9.*

Version 4.9.331

Status unaffected

Version <= 4.14.*

Version 4.14.296

Status unaffected

Version <= 4.19.*

Version 4.19.262

Status unaffected

Version <= 5.4.*

Version 5.4.220

Status unaffected

Version <= 5.10.*

Version 5.10.150

Status unaffected

Version <= 5.15.*

Version 5.15.75

Status unaffected

Version <= 5.19.*

Version 5.19.17

Status unaffected

Version <= 6.0.*

Version 6.0.3

Status unaffected

Version <= *

Version 6.1

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.03%	0.084

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string

https://git.kernel.org/stable/c/0604e5e5537af099ea2f6dfd892afe5c92db8a80

https://git.kernel.org/stable/c/28d8d267af5d73f91d7640cbdb4024703256e36c

https://git.kernel.org/stable/c/46f0aed47673e275d682af60ed26dcc28add8eae

https://git.kernel.org/stable/c/988ec0cd0a2643c25c1658f7c33de2e15a5a2e31

https://git.kernel.org/stable/c/bc1d16d282bca421c6fc31de4b8fd412010f01bd

https://git.kernel.org/stable/c/0672215994e2347a9b4f145e2bc1709b1e01cee3

https://git.kernel.org/stable/c/faa8c1ed77d0169955b9b3516b714cc5fb512f27

https://git.kernel.org/stable/c/e4442410f76d66b9f7e854010bce04853f665324

https://git.kernel.org/stable/c/6382da0828995af87aa8b8bef28cc61aceb4aff3

https://nvd.nist.gov/vuln/detail/CVE-2022-50484

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-50484

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-50484

EUVD