-

CVE-2022-50829

EPSS 0.05%
Veröffentlicht 30.12.2025 12:10:51
Zuletzt bearbeitet 31.12.2025 20:43:05
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

wifi: ath9k: hif_usb: Fix use-after-free in ath9k_hif_usb_reg_in_cb()

It is possible that skb is freed in ath9k_htc_rx_msg(), then
usb_submit_urb() fails and we try to free skb again. It causes
use-after-free bug. Moreover, if alloc_skb() fails, urb->context becomes
NULL but rx_buf is not freed and there can be a memory leak.

The patch removes unnecessary nskb and makes skb processing more clear: it
is supposed that ath9k_htc_rx_msg() either frees old skb or passes its
managing to another callback function.

Found by Linux Verification Center (linuxtesting.org) with Syzkaller.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 12

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 5e8751a977a49a6e00cce1a8da5ca16da83f9c8c

Version 3deff76095c4ac4252e27c537db3041f619c23a2

Status affected

Version < f127c2b4c967025e5c3a4ce7e13b79135d46a33d

Version 3deff76095c4ac4252e27c537db3041f619c23a2

Status affected

Version < 0c8dd2ea4b419da96ab4953e4967e9363e2f8a4f

Version 3deff76095c4ac4252e27c537db3041f619c23a2

Status affected

Version < 988bd27de2484faf17afe0408db2e3d9e5ac61fc

Version 3deff76095c4ac4252e27c537db3041f619c23a2

Status affected

Version < 98d9172822dc6f38138333941984bd759a89d419

Version 3deff76095c4ac4252e27c537db3041f619c23a2

Status affected

Version < 355f16f756aad0c95cdaa0c14a34ab4137d32815

Version 3deff76095c4ac4252e27c537db3041f619c23a2

Status affected

Version < 53b9bb1a00c4285ee7f58a11129dbea015db61bc

Version 3deff76095c4ac4252e27c537db3041f619c23a2

Status affected

Version < 71fc0ad671a62c494d2aec731baeabd3bfe6c95d

Version 3deff76095c4ac4252e27c537db3041f619c23a2

Status affected

Version < dd95f2239fc846795fc926787c3ae0ca701c9840

Version 3deff76095c4ac4252e27c537db3041f619c23a2

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 3.0

Status affected

Version < 3.0

Version 0

Status unaffected

Version <= 4.9.*

Version 4.9.337

Status unaffected

Version <= 4.14.*

Version 4.14.303

Status unaffected

Version <= 4.19.*

Version 4.19.270

Status unaffected

Version <= 5.4.*

Version 5.4.229

Status unaffected

Version <= 5.10.*

Version 5.10.163

Status unaffected

Version <= 5.15.*

Version 5.15.86

Status unaffected

Version <= 6.0.*

Version 6.0.16

Status unaffected

Version <= 6.1.*

Version 6.1.2

Status unaffected

Version <= *

Version 6.2

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.145

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/5e8751a977a49a6e00cce1a8da5ca16da83f9c8c

https://git.kernel.org/stable/c/f127c2b4c967025e5c3a4ce7e13b79135d46a33d

https://git.kernel.org/stable/c/0c8dd2ea4b419da96ab4953e4967e9363e2f8a4f

https://git.kernel.org/stable/c/988bd27de2484faf17afe0408db2e3d9e5ac61fc

https://git.kernel.org/stable/c/98d9172822dc6f38138333941984bd759a89d419

https://git.kernel.org/stable/c/355f16f756aad0c95cdaa0c14a34ab4137d32815

https://git.kernel.org/stable/c/53b9bb1a00c4285ee7f58a11129dbea015db61bc

https://git.kernel.org/stable/c/71fc0ad671a62c494d2aec731baeabd3bfe6c95d

https://git.kernel.org/stable/c/dd95f2239fc846795fc926787c3ae0ca701c9840

https://nvd.nist.gov/vuln/detail/CVE-2022-50829

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-50829

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-50829

EUVD