CVE-2022-50822 — Missing Release of Resource after Effective Lifetime in Linux

CWE-772 — Missing Release of Resource after Effective Lifetime7 documents6 sources

Severity

5.5MEDIUM

No vector

EPSS

0.0%

top 92.73%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 30

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/restrack: Release MR restrack when delete The MR restrack also needs to be released when delete it, otherwise it cause memory leak as the task struct won't be released.

Affected Packages4 packages

▶Linuxlinux/linux_kernel5.10.0 — 5.15.86+2

▶Debianlinux/linux_kernel< 6.1.4-1+2

▶CVEListV5linux/linux13ef5539def732dc7b9c58c320d97a0a95b52634 — 13586753ae55146269a6dc8b216f17d86b81560c+4

▶debiandebian/linux< linux 6.1.4-1 (bookworm)

🔴Vulnerability Details

GHSA

GHSA-6mq5-qvxj-rwc8: In the Linux kernel, the following vulnerability has been resolved: RDMA/restrack: Release MR restrack when delete The MR restrack also needs to be↗2025-12-30

▶

OSV

CVE-2022-50822: In the Linux kernel, the following vulnerability has been resolved: RDMA/restrack: Release MR restrack when delete The MR restrack also needs to be re↗2025-12-30

▶

OSV

RDMA/restrack: Release MR restrack when delete↗2025-12-30

▶

📋Vendor Advisories

Red Hat

kernel: Linux kernel: Memory leak in RDMA restrack leads to Denial of Service↗2025-12-30

▶

Debian

CVE-2022-50822: linux - In the Linux kernel, the following vulnerability has been resolved: RDMA/restra...↗2022

▶

🕵️Threat Intelligence

Wiz

CVE-2022-50822 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶