CVE-2022-50245
Published: Sep 15, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: rapidio: fix possible UAF when kfifo_alloc() fails If kfifo_alloc() fails in mport_cdev_open(), goto err_fifo and just free priv. But priv is still in the chdev->file_list, then list traversal may cause UAF. This fixes the following smatch warning: drivers/rapidio/devices/rio_mport_cdev.c:1930 mport_cdev_open() warn: '&priv->list' not removed from list
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected e8de370188d098bb49483c287b44925957c3c9b6 - < 2a6c75adf8192f07ddcdd4a1a13488c890a73919affected e8de370188d098bb49483c287b44925957c3c9b6 - < 2dfd60724d271a6ab99f93f40f38f2ced1ddbb87affected e8de370188d098bb49483c287b44925957c3c9b6 - < a253dde0403a153075ffb254f6f7b2635e49e97aaffected e8de370188d098bb49483c287b44925957c3c9b6 - < 311b488405ac45af46756b1c8f1d27007b68b07eaffected e8de370188d098bb49483c287b44925957c3c9b6 - < 5ee850645e42f541ce1ea8130c2b27cc495f965c+4 more versions |
Linux | Linux | affected 4.6unaffected 0 - < 4.6unaffected 4.9.337 - <= 4.9.*unaffected 4.14.303 - <= 4.14.*unaffected 4.19.270 - <= 4.19.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now