CVE-2022-50653

Dec. 9, 2025, 6:37 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: mmc: atmel-mci: fix return value check of mmc_add_host() mmc_add_host() may return error, if we ignore its return value, it will lead two issues: 1. The memory that allocated in mmc_alloc_host() is leaked. 2. In the remove() path, mmc_remove_host() will be called to delete device, but it's not added yet, it will lead a kernel crash because of null-ptr-deref in device_del(). So fix this by checking the return value and calling mmc_free_host() in the error path.

Product(s) Impacted

Vendor Product Versions
Linux
  • Linux Kernel
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
a linux linux_kernel / / / / / / / /

References

https://git.kernel.org/stable/c/00ac0f5f95920f003cd6ece53cdc759549b69118
https://git.kernel.org/stable/c/1925472dec31ec061d57412b3a65a056ea24f340
https://git.kernel.org/stable/c/6bb26abb92f25e582a0976091a10b539fe3796db
https://git.kernel.org/stable/c/85946ceb0fac20ab39cdb85333086daf0291a553
https://git.kernel.org/stable/c/99a6cdfa2cf05028b52f6d8ee85ccc5f8b71b4a2
https://git.kernel.org/stable/c/9e6e8c43726673ca2abcaac87640b9215fd72f4c
https://git.kernel.org/stable/c/cc8bb436f3c842a86b9082d97933582120d180e2

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2025-12-09
CVE-2022-50653

Timeline

Published: Dec. 9, 2025, 1:16 a.m.
Last Modified: Dec. 9, 2025, 6:37 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.