CVE-2022-50481

MEDIUM EPSS 4.2%
Published Oct 4, 20258mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Oct 4, 2025 8mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: cxl: fix possible null-ptr-deref in cxl_guest_init_afu|adapter() If device_register() fails in cxl_register_afu|adapter(), the device is not added, device_unregister() can not be called in the error path, otherwise it will cause a null-ptr-deref because of removing not added device. As comment of device_register() says, it should use put_device() to give up the reference in the error path. So split device_unregister() into device_del() and put_device(), then goes to put dev when register fails.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
4.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 8

VendorProductVersionRange
linuxlinux_kernel*≥4.6  –  <4.9.337
linuxlinux_kernel*≥4.10  –  <4.14.303
linuxlinux_kernel*≥4.15  –  <4.19.270
linuxlinux_kernel*≥4.20  –  <5.4.229
linuxlinux_kernel*≥5.5  –  <5.10.163
linuxlinux_kernel*≥5.11  –  <5.15.86
linuxlinux_kernel*≥5.16  –  <6.0.16
linuxlinux_kernel*≥6.1  –  <6.1.2

References 9

  • git.kernel.org https://git.kernel.org/stable/c/170e8c2d2b61e15e7f7cfeded81bc1e959a15ed8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1ae581696b7a799afa39a664c4b721569643f58a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/60b2ed21a65f3f5318666ccd765c3507991370cf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/61c80d1c3833e196256fb060382db94f24d3d9a7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/96fba6fb95bdede80583c262ac185da09661f264
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ab44c182353be101c3be9465e1d15d42130c53c4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b32559ee4e6667c5c3daf4ec5454c277d1f255d2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d775a1da5a52b4f4bb02f2707ba420d1bec48dbb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e5021bbf11b024cc65ea1e84c377df484183be4b
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/170e8c2d2b61e15e7f7cfeded81bc1e959a15ed8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1ae581696b7a799afa39a664c4b721569643f58a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/60b2ed21a65f3f5318666ccd765c3507991370cf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/61c80d1c3833e196256fb060382db94f24d3d9a7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/96fba6fb95bdede80583c262ac185da09661f264
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ab44c182353be101c3be9465e1d15d42130c53c4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b32559ee4e6667c5c3daf4ec5454c277d1f255d2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d775a1da5a52b4f4bb02f2707ba420d1bec48dbb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e5021bbf11b024cc65ea1e84c377df484183be4b
    Patch