CVE-2022-50252

HIGH

Linux Kernel Use-After-Free in igb q_vector Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: igb: Do not free q_vector unless new one was allocated Avoid potential use-after-free condition under memory pressure. If the kzalloc() fails, q_vector will be freed but left in the original adapter->q_vector[v_idx] array position.

References (9)

Core 9

Core References

Patch

https://git.kernel.org/stable/c/64ca1969599857143e91aeec4440640656100803

Patch

https://git.kernel.org/stable/c/0200f0fbb11e359cc35af72ab10b2ec224e6f633

Patch

https://git.kernel.org/stable/c/68e8adbcaf7a8743e473343b38b9dad66e2ac6f3

Patch

https://git.kernel.org/stable/c/f96bd8adc8adde25390965a8c1ee81b73cb62075

Patch

https://git.kernel.org/stable/c/3cb18dea11196fb4a06f78294cec5e61985e1aff

Patch

https://git.kernel.org/stable/c/314f7092b27749bdde44c14095b5533afa2a3bc8

Patch

https://git.kernel.org/stable/c/6e399577bd397a517df4b938601108c63769ce0a

Patch

https://git.kernel.org/stable/c/56483aecf6b22eb7dff6315b3a174688c6ad494c

Patch

https://git.kernel.org/stable/c/0668716506ca66f90d395f36ccdaebc3e0e84801

Scores

CVSS v3 7.8

EPSS 0.0015

EPSS Percentile 4.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-416

Status published

Products (35)

linux/Kernel 4.10.0 - 4.14.303linux

linux/Kernel 4.15.0 - 4.19.270linux

linux/Kernel 4.20.0 - 5.4.229linux

linux/Kernel 4.3.0 - 4.9.337linux

linux/Kernel 5.11.0 - 5.15.86linux

linux/Kernel 5.16.0 - 6.0.16linux

linux/Kernel 5.5.0 - 5.10.163linux

linux/Kernel 6.1.0 - 6.1.2linux

Linux/Linux < 4.3

Linux/Linux 3.18.23 - 3.19

... and 25 more

Published Sep 15, 2025

Tracked Since Feb 18, 2026