CVE-2022-50863 — Missing Release of Resource after Effective Lifetime in Linux

CWE-772 — Missing Release of Resource after Effective Lifetime7 documents6 sources

Severity

5.5MEDIUM

No vector

EPSS

0.0%

top 93.24%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 30

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: free unused skb to prevent memory leak This avoid potential memory leak under power saving mode.

Affected Packages4 packages

▶Linuxlinux/linux_kernel5.19.0 — 5.19.17+1

▶Debianlinux/linux_kernel< 6.0.3-1+2

▶CVEListV5linux/linuxfc5f311fce742d906294360e378c1df631d2d692 — d4b4f6ff8ff1b87d25977423cf38fb61744d0023+3

▶debiandebian/linux< linux 6.0.3-1 (bookworm)

🔴Vulnerability Details

GHSA

GHSA-45pp-2jvr-rmp9: In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: free unused skb to prevent memory leak This avoid potential memory↗2025-12-30

▶

OSV

CVE-2022-50863: In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: free unused skb to prevent memory leak This avoid potential memory le↗2025-12-30

▶

OSV

wifi: rtw89: free unused skb to prevent memory leak↗2025-12-30

▶

📋Vendor Advisories

Red Hat

kernel: Kernel: Denial of Service via memory leak in wifi power saving mode↗2025-12-30

▶

Debian

CVE-2022-50863: linux - In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89...↗2022

▶

🕵️Threat Intelligence

Wiz

CVE-2022-50863 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶