CVE-2022-50165

MEDIUM

Linux Kernel 3.17-5.19.1 - Use of Uninitialized Resource in wil_write_file_wmi()

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: wil6210: debugfs: fix uninitialized variable use in `wil_write_file_wmi()` Commit 7a4836560a61 changes simple_write_to_buffer() with memdup_user() but it forgets to change the value to be returned that came from simple_write_to_buffer() call. It results in the following warning: warning: variable 'rc' is uninitialized when used here [-Wuninitialized] return rc; ^~ Remove rc variable and just return the passed in length if the memdup_user() succeeds.

References (8)

Core 8

Core References

Patch

https://git.kernel.org/stable/c/b13c84e877d7a3095bacb14665db304b2c00e95f

Patch

https://git.kernel.org/stable/c/c9fde3a44da566d8929070ab6bda4f0dfa9955d0

Patch

https://git.kernel.org/stable/c/52b11a48cf073e0aab923ae809a765d756cecf13

Patch

https://git.kernel.org/stable/c/6c5fee83bdbeffe8d607d1ab125122a75f40bd1a

Patch

https://git.kernel.org/stable/c/689e5caf63e99e15d2f485ec297c1bf9243e0e28

Patch

https://git.kernel.org/stable/c/d4742c886043b69d2d058bfde3998ef333b66595

Patch

https://git.kernel.org/stable/c/409bd72e544fdf4809ea0dac337bb5a1f11a25a9

Patch

https://git.kernel.org/stable/c/d578e0af3a003736f6c440188b156483d451b329

Scores

CVSS v3 5.5

EPSS 0.0020

EPSS Percentile 9.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-908

Status published

Products (26)

linux/Kernel 3.17.0 - 4.14.291linux

linux/Kernel 4.15.0 - 4.19.256linux

linux/Kernel 4.20.0 - 5.4.211linux

linux/Kernel 5.11.0 - 5.15.61linux

linux/Kernel 5.16.0 - 5.18.18linux

linux/Kernel 5.19.0 - 5.19.2linux

linux/Kernel 5.5.0 - 5.10.137linux

Linux/Linux < 3.17

Linux/Linux 3.17

Linux/Linux 4.14.291 - 4.14.*

... and 16 more

Published Jun 18, 2025

Tracked Since Feb 18, 2026