CVE-2022-50846 in Linuxinformación

Resumen

por MITRE • 2025-12-30

In the Linux kernel, the following vulnerability has been resolved:

mmc: via-sdmmc: fix return value check of mmc_add_host()

mmc_add_host() may return error, if we ignore its return value, it will lead two issues: 1. The memory that allocated in mmc_alloc_host() is leaked. 2. In the remove() path, mmc_remove_host() will be called to delete device, but it's not added yet, it will lead a kernel crash because of null-ptr-deref in device_del().

Fix this by checking the return value and goto error path which will call mmc_free_host().

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Responsable

Linux

Reservar

2025-12-30

Divulgación

2025-12-30

Moderación

aceptado

Artículo

VDB-338883

CPE

listo

EPSS

0.00239

KEV

no

Actividades

muy bajo

Fuentes

Do you need the next level of professionalism?

Upgrade your account now!