CVE-2022-50679Release of Invalid Pointer or Reference in Linux

CWE-763Release of Invalid Pointer or Reference7 documents6 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 90.17%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 9

Description

In the Linux kernel, the following vulnerability has been resolved: i40e: Fix DMA mappings leak During reallocation of RX buffers, new DMA mappings are created for those buffers. steps for reproduction: while : do for ((i=0; i<=8160; i=i+32)) do ethtool -G enp130s0f0 rx $i tx $i sleep 0.5 ethtool -g enp130s0f0 done done This resulted in crash: i40e 0000:01:00.1: Unable to allocate memory for the Rx descriptor ring, size=65536 Driver BUG WARNING: CPU: 0 PID: 4300 at net/core/xdp.c:141 xdp_rxq

Affected Packages4 packages

Linuxlinux/linux_kernel5.8.05.10.152+2
Debianlinux/linux_kernel< 5.10.158-1+3
CVEListV5linux/linuxbe1222b585fdc410b8c1dbcc57dd03a00f04eff5ed5baf3d0a33caaca4cd4073ebb0854cc77a616d+4
debiandebian/linux< linux 6.0.6-1 (bookworm)

🔴Vulnerability Details

3
OSV
i40e: Fix DMA mappings leak2025-12-09
OSV
CVE-2022-50679: In the Linux kernel, the following vulnerability has been resolved: i40e: Fix DMA mappings leak During reallocation of RX buffers, new DMA mappings ar2025-12-09
GHSA
GHSA-75w2-9m25-jvqg: In the Linux kernel, the following vulnerability has been resolved: i40e: Fix DMA mappings leak During reallocation of RX buffers, new DMA mappings2025-12-09

📋Vendor Advisories

2
Red Hat
kernel: i40e: Fix DMA mappings leak2025-12-09
Debian
CVE-2022-50679: linux - In the Linux kernel, the following vulnerability has been resolved: i40e: Fix D...2022

🕵️Threat Intelligence

1
Wiz
CVE-2022-50679 Impact, Exploitability, and Mitigation Steps | Wiz