CVE-2022-50251
Published: Sep 15, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: mmc: vub300: fix return value check of mmc_add_host() mmc_add_host() may return error, if we ignore its return value, the memory that allocated in mmc_alloc_host() will be leaked and it will lead a kernel crash because of deleting not added device in the remove path. So fix this by checking the return value and goto error path which will call mmc_free_host(), besides, the timer added before mmc_add_host() needs be del. And this patch fixes another missing call mmc_free_host() if usb_control_msg() fails.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 88095e7b473a3d9ec3b9c60429576e9cbd327c89 - < 41ed46bdbd2878cd6567abe0974a445f8b1b8ec8affected 88095e7b473a3d9ec3b9c60429576e9cbd327c89 - < 25f05d762ca5e1c685002a53dd44f68e78ca3febaffected 88095e7b473a3d9ec3b9c60429576e9cbd327c89 - < a46e681151bbdacdf6b89ee8c4e5bad0555142bbaffected 88095e7b473a3d9ec3b9c60429576e9cbd327c89 - < 3b29f8769d32016b2d89183db4d80c7a71b7e35eaffected 88095e7b473a3d9ec3b9c60429576e9cbd327c89 - < 3049a3b927a40d89d4582ff1033cd7953be773c7+4 more versions |
Linux | Linux | affected 3.0unaffected 0 - < 3.0unaffected 4.9.337 - <= 4.9.*unaffected 4.14.303 - <= 4.14.*unaffected 4.19.270 - <= 4.19.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now