CVE-2022-50269

MEDIUM EPSS 4.2%
Published Sep 15, 20259mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Sep 15, 2025 9mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix memory leak in vkms_init() A memory leak was reported after the vkms module install failed. unreferenced object 0xffff88810bc28520 (size 16): comm "modprobe", pid 9662, jiffies 4298009455 (age 42.590s) hex dump (first 16 bytes): 01 01 00 64 81 88 ff ff 00 00 dc 0a 81 88 ff ff ...d............ backtrace: [<00000000e7561ff8>] kmalloc_trace+0x27/0x60 [<000000000b1954a0>] 0xffffffffc45200a9 [<00000000abbf1da0>] do_one_initcall+0xd0/0x4f0 [<000000001505ee87>] do_init_module+0x1a4/0x680 [<00000000958079ad>] load_module+0x6249/0x7110 [<00000000117e4696>] __do_sys_finit_module+0x140/0x200 [<00000000f74b12d2>] do_syscall_64+0x35/0x80 [<000000008fc6fcde>] entry_SYSCALL_64_after_hwframe+0x46/0xb0 The reason is that the vkms_init() returns without checking the return value of vkms_create(), and if the vkms_create() failed, the config allocated at the beginning of vkms_init() is leaked. vkms_init() config = kmalloc(...) # config allocated ... return vkms_create() # vkms_create failed and config is leaked Fix this problem by checking return value of vkms_create() and free the config if error happened.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
4.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 3

VendorProductVersionRange
linuxlinux_kernel*≥5.12  –  <5.15.99
linuxlinux_kernel*≥5.16  –  <6.1.16
linuxlinux_kernel*≥6.2  –  <6.2.3

References 4

  • git.kernel.org https://git.kernel.org/stable/c/07ab77154d6fd2d67e465ab5ce30083709950f02
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/0d0b368b9d104b437e1f4850ae94bdb9a3601e89
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bad13de764888b765ceaa4668893b52bd16653cc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bebd60ec3bf21062f103e32e6203c6daabdbd51b
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/07ab77154d6fd2d67e465ab5ce30083709950f02
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/0d0b368b9d104b437e1f4850ae94bdb9a3601e89
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bad13de764888b765ceaa4668893b52bd16653cc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bebd60ec3bf21062f103e32e6203c6daabdbd51b
    Patch