CVE-2022-50824 — Improper Update of Reference Count in Linux

CWE-911 — Improper Update of Reference Count7 documents6 sources

Severity

3.3LOW

No vector

EPSS

0.0%

top 89.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 30

Description

In the Linux kernel, the following vulnerability has been resolved: tpm: tpm_tis: Add the missed acpi_put_table() to fix memory leak In check_acpi_tpm2(), we get the TPM2 table just to make sure the table is there, not used after the init, so the acpi_put_table() should be added to release the ACPI memory.

Affected Packages4 packages

▶Linuxlinux/linux_kernel4.13.0 — 4.14.303+6

▶Debianlinux/linux_kernel< 5.10.178-1+3

▶CVEListV5linux/linux4cb586a188d468e05649575f0689dd2bf8c122e6 — 8bc6c10d3f389693410adb14b4e9deec01ff6334+8

▶debiandebian/linux< linux 6.1.4-1 (bookworm)

🔴Vulnerability Details

OSV

CVE-2022-50824: In the Linux kernel, the following vulnerability has been resolved: tpm: tpm_tis: Add the missed acpi_put_table() to fix memory leak In check_acpi_tpm↗2025-12-30

▶

OSV

tpm: tpm_tis: Add the missed acpi_put_table() to fix memory leak↗2025-12-30

▶

GHSA

GHSA-vhhq-m77j-5mrm: In the Linux kernel, the following vulnerability has been resolved: tpm: tpm_tis: Add the missed acpi_put_table() to fix memory leak In check_acpi_t↗2025-12-30

▶

📋Vendor Advisories

Red Hat

kernel: tpm: tpm_tis: Add the missed acpi_put_table() to fix memory leak↗2025-12-30

▶

Debian

CVE-2022-50824: linux - In the Linux kernel, the following vulnerability has been resolved: tpm: tpm_ti...↗2022

▶

🕵️Threat Intelligence

Wiz

CVE-2022-50824 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶