CVE-2022-50663 — Missing Reference to Active Allocated Resource in Linux

CWE-771 — Missing Reference to Active Allocated Resource6 documents5 sources

Severity

4.7MEDIUM

No vector

EPSS

0.0%

top 90.17%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 9

Description

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix possible memory leak in stmmac_dvr_probe() The bitmap_free() should be called to free priv->af_xdp_zc_qps when create_singlethread_workqueue() fails, otherwise there will be a memory leak, so we add the err path error_wq_init to fix it.

Affected Packages4 packages

▶Linuxlinux/linux_kernel5.13.0 — 5.15.86+2

▶Debianlinux/linux_kernel< 6.1.4-1+2

▶CVEListV5linux/linuxbba2556efad66e7eaa56fece13f7708caa1187f8 — 96e50897029f65222ef76cfe9bc802321fcea33b+4

▶debiandebian/linux< linux 6.1.4-1 (bookworm)

🔴Vulnerability Details

OSV

net: stmmac: fix possible memory leak in stmmac_dvr_probe()↗2025-12-09

▶

GHSA

GHSA-w8r8-r3c3-44hm: In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix possible memory leak in stmmac_dvr_probe() The bitmap_free() sh↗2025-12-09

▶

OSV

CVE-2022-50663: In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix possible memory leak in stmmac_dvr_probe() The bitmap_free() shou↗2025-12-09

▶

📋Vendor Advisories

Red Hat

kernel: net: stmmac: fix possible memory leak in stmmac_dvr_probe()↗2025-12-09

▶

Debian

CVE-2022-50663: linux - In the Linux kernel, the following vulnerability has been resolved: net: stmmac...↗2022

▶