CVE-2022-50566

Oct. 22, 2025, 9:12 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: mtd: Fix device name leak when register device failed in add_mtd_device() There is a kmemleak when register device failed: unreferenced object 0xffff888101aab550 (size 8): comm "insmod", pid 3922, jiffies 4295277753 (age 925.408s) hex dump (first 8 bytes): 6d 74 64 30 00 88 ff ff mtd0.... backtrace: [<00000000bde26724>] __kmalloc_node_track_caller+0x4e/0x150 [<000000003c32b416>] kvasprintf+0xb0/0x130 [<000000001f7a8f15>] kobject_set_name_vargs+0x2f/0xb0 [<000000006e781163>] dev_set_name+0xab/0xe0 [<00000000e30d0c78>] add_mtd_device+0x4bb/0x700 [<00000000f3d34de7>] mtd_device_parse_register+0x2ac/0x3f0 [<00000000c0d88488>] 0xffffffffa0238457 [<00000000b40d0922>] 0xffffffffa02a008f [<0000000023d17b9d>] do_one_initcall+0x87/0x2a0 [<00000000770f6ca6>] do_init_module+0xdf/0x320 [<000000007b6768fe>] load_module+0x2f98/0x3330 [<00000000346bed5a>] __do_sys_finit_module+0x113/0x1b0 [<00000000674c2290>] do_syscall_64+0x35/0x80 [<000000004c6a8d97>] entry_SYSCALL_64_after_hwframe+0x46/0xb0 If register device failed, should call put_device() to give up the reference.

Product(s) Impacted

Vendor Product Versions
Linux
  • Linux Kernel
  • Mtd
  • *
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
a linux linux_kernel / / / / / / / /
a linux mtd / / / / / / / /

References

https://git.kernel.org/stable/c/1b172fb05d6315ecec082fd7544a3390e96f0d7e
https://git.kernel.org/stable/c/2302e2dc42b1f84f951c725ce742fc21c5a1e151
https://git.kernel.org/stable/c/330bc5533e8a8ed69cb951d5a8edce9bddb9db21
https://git.kernel.org/stable/c/71212d73184845c944ef1b43f092e643e5bde003
https://git.kernel.org/stable/c/895d68a39481a75c680aa421546931fb11942fa6
https://git.kernel.org/stable/c/a75f45afa932bfb24a2603ebcea5efd2e7cdcfd6
https://git.kernel.org/stable/c/bcabe1dc2a344adbb3382930a23e273ba9382277
https://git.kernel.org/stable/c/db07fe76df01f40cb897d6e9066b84e46957beb3
https://git.kernel.org/stable/c/fa0d32ab8407d7481450c664fd0de64f2dae9489

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2025-10-22
CVE-2022-50566

Timeline

Published: Oct. 22, 2025, 2:15 p.m.
Last Modified: Oct. 22, 2025, 9:12 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.