-

CVE-2022-50672

EPSS 0.03%
Veröffentlicht 09.12.2025 01:29:24
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

mailbox: zynq-ipi: fix error handling while device_register() fails

In the Linux kernel, the following vulnerability has been resolved:

mailbox: zynq-ipi: fix error handling while device_register() fails

If device_register() fails, it has two issues:
1. The name allocated by dev_set_name() is leaked.
2. The parent of device is not NULL, device_unregister() is called
   in zynqmp_ipi_free_mboxes(), it will lead a kernel crash because
   of removing not added device.

Call put_device() to give up the reference, so the name is freed in
kobject_cleanup(). Add device registered check in zynqmp_ipi_free_mboxes()
to avoid null-ptr-deref.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 9

CNA 2 VulnDex Vulnerability Enrichment 8

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 4981b82ba2ff87df6a711fcd7a233c615df5fc79

Version < b3a5c76f61e2b380e29dfc6705854ca1ee85501d

Status affected

Version 4981b82ba2ff87df6a711fcd7a233c615df5fc79

Version < a39b4de0804f9fe0ae911b359ffd4afe7d9d933b

Status affected

Version 4981b82ba2ff87df6a711fcd7a233c615df5fc79

Version < 4f05d8e2fb3ab702c2633a74571e1b31cb579985

Status affected

Version 4981b82ba2ff87df6a711fcd7a233c615df5fc79

Version < f2d63cefc012cafe1b7651bbf3302f8bcd8bea4a

Status affected

Version 4981b82ba2ff87df6a711fcd7a233c615df5fc79

Version < 3fcf079958c00d83c51e4f250abf2c77fe9cc1b9

Status affected

Version 4981b82ba2ff87df6a711fcd7a233c615df5fc79

Version < a6792a0cdef0b1c2d77920246283a72537e60e94

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.1

Status affected

Version 0

Version < 5.1

Status unaffected

Version <= 5.4.*

Version 5.4.229

Status unaffected

Version <= 5.10.*

Version 5.10.163

Status unaffected

Version <= 5.15.*

Version 5.15.86

Status unaffected

Version <= 6.0.*

Version 6.0.16

Status unaffected

Version <= 6.1.*

Version 6.1.2

Status unaffected

Version <= *

Version 6.2

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.085

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/b3a5c76f61e2b380e29dfc6705854ca1ee85501d

https://git.kernel.org/stable/c/a39b4de0804f9fe0ae911b359ffd4afe7d9d933b

https://git.kernel.org/stable/c/4f05d8e2fb3ab702c2633a74571e1b31cb579985

https://git.kernel.org/stable/c/f2d63cefc012cafe1b7651bbf3302f8bcd8bea4a

https://git.kernel.org/stable/c/3fcf079958c00d83c51e4f250abf2c77fe9cc1b9

https://git.kernel.org/stable/c/a6792a0cdef0b1c2d77920246283a72537e60e94

https://nvd.nist.gov/vuln/detail/CVE-2022-50672

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-50672

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-50672

EUVD