CVE-2022-50244

MEDIUM EPSS 4.5%
Published Sep 15, 20259mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Sep 15, 2025 9mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: cxl: fix possible null-ptr-deref in cxl_pci_init_afu|adapter() If device_register() fails in cxl_pci_afu|adapter(), the device is not added, device_unregister() can not be called in the error path, otherwise it will cause a null-ptr-deref because of removing not added device. As comment of device_register() says, it should use put_device() to give up the reference in the error path. So split device_unregister() into device_del() and put_device(), then goes to put dev when register fails.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
4.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 8

VendorProductVersionRange
linuxlinux_kernel*≥3.18  –  <4.9.337
linuxlinux_kernel*≥4.10  –  <4.14.303
linuxlinux_kernel*≥4.15  –  <4.19.270
linuxlinux_kernel*≥4.20  –  <5.4.229
linuxlinux_kernel*≥5.5  –  <5.10.163
linuxlinux_kernel*≥5.11  –  <5.15.86
linuxlinux_kernel*≥5.16  –  <6.0.16
linuxlinux_kernel*≥6.1  –  <6.1.2

References 9

  • git.kernel.org https://git.kernel.org/stable/c/02cd3032b154fa02fdf90e7467abaeed889330b2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/0f63c0ddc2ea20d783d29243f4dbe0f9e95dfdec
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/139abd4c626a6f7ce02789ed5f73aa2256e0542b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/22511eefa61db26e12c97dd7ada3071dbdfcb004
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2f5fd31b2f24b9b8a80ab566fd8c4e1e94cb4339
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/361412dae1690d4b5df6f92fc943cdc773c95cbc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/82e5481428faf11c79b9c094dd24a1849bbf64ac
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/82e68432668ae75b4c814d160f6987ecb0681273
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c4b2e35df919d99bbbed033c2fa0b607f9f463b5
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/02cd3032b154fa02fdf90e7467abaeed889330b2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/0f63c0ddc2ea20d783d29243f4dbe0f9e95dfdec
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/139abd4c626a6f7ce02789ed5f73aa2256e0542b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/22511eefa61db26e12c97dd7ada3071dbdfcb004
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2f5fd31b2f24b9b8a80ab566fd8c4e1e94cb4339
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/361412dae1690d4b5df6f92fc943cdc773c95cbc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/82e5481428faf11c79b9c094dd24a1849bbf64ac
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/82e68432668ae75b4c814d160f6987ecb0681273
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c4b2e35df919d99bbbed033c2fa0b607f9f463b5
    Patch