CVE-2022-50274

HIGH EPSS 4.6%
Published Sep 15, 20259mo ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Sep 15, 2025 9mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: adopts refcnt to avoid UAF dvb_unregister_device() is known that prone to use-after-free. That is, the cleanup from dvb_unregister_device() releases the dvb_device even if there are pointers stored in file->private_data still refer to it. This patch adds a reference counter into struct dvb_device and delays its deallocation until no pointer refers to the object.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
4.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel* <4.14.303
linuxlinux_kernel*≥4.15  –  <4.19.270
linuxlinux_kernel*≥4.20  –  <5.4.229
linuxlinux_kernel*≥5.5  –  <5.10.163
linuxlinux_kernel*≥5.11  –  <5.15.86
linuxlinux_kernel*≥5.16  –  <6.0.16
linuxlinux_kernel*≥6.1  –  <6.1.2

References 8

  • git.kernel.org https://git.kernel.org/stable/c/0fc044b2b5e2d05a1fa1fb0d7f270367a7855d79
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/219b44bf94203bd433aa91b7796475bf656348e5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2abd73433872194bccdf1432a0980e4ec5273c2a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6d18b44bb44e1f4d97dfe0efe92ac0f0984739c2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/88a6f8a72d167294c0931c7874941bf37a41b6dd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9945d05d6693710574f354c5dbddc47f5101eb77
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a2f0a08aa613176c9688c81d7b598a7779974991
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ac521bbe3d00fa574e66a9361763f2b37725bc97
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0fc044b2b5e2d05a1fa1fb0d7f270367a7855d79
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/219b44bf94203bd433aa91b7796475bf656348e5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2abd73433872194bccdf1432a0980e4ec5273c2a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6d18b44bb44e1f4d97dfe0efe92ac0f0984739c2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/88a6f8a72d167294c0931c7874941bf37a41b6dd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9945d05d6693710574f354c5dbddc47f5101eb77
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a2f0a08aa613176c9688c81d7b598a7779974991
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ac521bbe3d00fa574e66a9361763f2b37725bc97
    Patch