CVE-2022-50617 — Missing Release of Resource after Effective Lifetime in Linux

CWE-772 — Missing Release of Resource after Effective Lifetime6 documents5 sources

Severity

5.5MEDIUM

No vector

EPSS

0.0%

top 90.17%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 8

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/powerplay/psm: Fix memory leak in power state init Commit 902bc65de0b3 ("drm/amdgpu/powerplay/psm: return an error in power state init") made the power state init function return early in case of failure to get an entry from the powerplay table, but it missed to clean up the allocated memory for the current power state before returning.

Affected Packages4 packages

▶Linuxlinux/linux_kernel5.11.0 — 5.15.86+2

▶Debianlinux/linux_kernel< 6.1.4-1+2

▶CVEListV5linux/linux902bc65de0b3d72c481b45cbac3e97ab8cb399c2 — 1caed03305b560bafea8eaa57f1847791658b3ff+4

▶debiandebian/linux< linux 6.1.4-1 (bookworm)

🔴Vulnerability Details

GHSA

GHSA-q8ph-32jj-626x: In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/powerplay/psm: Fix memory leak in power state init Commit 902bc65de0b↗2025-12-08

▶

OSV

drm/amdgpu/powerplay/psm: Fix memory leak in power state init↗2025-12-08

▶

OSV

CVE-2022-50617: In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/powerplay/psm: Fix memory leak in power state init Commit 902bc65de0b3↗2025-12-08

▶

📋Vendor Advisories

Red Hat

kernel: drm/amdgpu/powerplay/psm: Fix memory leak in power state init↗2025-12-08

▶

Debian

CVE-2022-50617: linux - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/...↗2022

▶