CVE-2022-50229
HIGHLinux Kernel 3.16-5.19.2 - Use-After-Free in ALSA bcd2000 Driver
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: ALSA: bcd2000: Fix a UAF bug on the error path of probing When the driver fails in snd_card_register() at probe time, it will free the 'bcd2k->midi_out_urb' before killing it, which may cause a UAF bug. The following log can reveal it: [ 50.727020] BUG: KASAN: use-after-free in bcd2000_input_complete+0x1f1/0x2e0 [snd_bcd2000] [ 50.727623] Read of size 8 at addr ffff88810fab0e88 by task swapper/4/0 [ 50.729530] Call Trace: [ 50.732899] bcd2000_input_complete+0x1f1/0x2e0 [snd_bcd2000] Fix this by adding usb_kill_urb() before usb_free_urb().
References (9)
Core 9
Core References
Scores
CVSS v3
7.8
EPSS
0.0020
EPSS Percentile
9.9%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-416
Status
published
Products (29)
linux/Kernel
3.16.0 - 4.9.326linux
linux/Kernel
4.10.0 - 4.14.291linux
linux/Kernel
4.15.0 - 4.19.256linux
linux/Kernel
4.20.0 - 5.4.211linux
linux/Kernel
5.11.0 - 5.15.61linux
linux/Kernel
5.16.0 - 5.18.18linux
linux/Kernel
5.19.0 - 5.19.2linux
linux/Kernel
5.5.0 - 5.10.137linux
Linux/Linux
< 3.16
Linux/Linux
3.16
... and 19 more
Published
Jun 18, 2025
Tracked Since
Feb 18, 2026