CVE-2022-50561

EPSS 0.03%
Veröffentlicht 22.10.2025 13:23:20
Zuletzt bearbeitet 22.10.2025 21:12:48
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

iio: fix memory leak in iio_device_register_eventset()

When iio_device_register_sysfs_group() returns failed,
iio_device_register_eventset() needs to free attrs array.

Otherwise, kmemleak would scan & report memory leak as below:

unreferenced object 0xffff88810a1cc3c0 (size 32):
  comm "100-i2c-vcnl302", pid 728, jiffies 4295052307 (age 156.027s)
  backtrace:
    __kmalloc+0x46/0x1b0
    iio_device_register_eventset at drivers/iio/industrialio-event.c:541
    __iio_device_register at drivers/iio/industrialio-core.c:1959
    __devm_iio_device_register at drivers/iio/industrialio-core.c:2040

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < dc6afd6070f3a5b086c8c5cfa6ded63ae44494da

Version 32f171724e5cbecc80594fb6eced057cfdd6eb6f

Status affected

Version < 5de3add7509c95685f1185683b817dd206c4b1f1

Version 32f171724e5cbecc80594fb6eced057cfdd6eb6f

Status affected

Version < a154b1c139fbf6a49762159be81d425d41ceec87

Version 32f171724e5cbecc80594fb6eced057cfdd6eb6f

Status affected

Version < 86fdd15e10e404e70ecb2a3bff24d70356d42b36

Version 32f171724e5cbecc80594fb6eced057cfdd6eb6f

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.13

Status affected

Version < 5.13

Version 0

Status unaffected

Version <= 5.15.*

Version 5.15.86

Status unaffected

Version <= 6.0.*

Version 6.0.16

Status unaffected

Version <= 6.1.*

Version 6.1.2

Status unaffected

Version <= *

Version 6.2

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.059

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/dc6afd6070f3a5b086c8c5cfa6ded63ae44494da

https://git.kernel.org/stable/c/5de3add7509c95685f1185683b817dd206c4b1f1

https://git.kernel.org/stable/c/a154b1c139fbf6a49762159be81d425d41ceec87

https://git.kernel.org/stable/c/86fdd15e10e404e70ecb2a3bff24d70356d42b36

https://nvd.nist.gov/vuln/detail/CVE-2022-50561

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-50561

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-50561

EUVD