CVE-2022-50352

MEDIUM

Linux Kernel <6.0.6 Use-After-Free in hnae_ae_register

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: net: hns: fix possible memory leak in hnae_ae_register() Inject fault while probing module, if device_register() fails, but the refcount of kobject is not decreased to 0, the name allocated in dev_set_name() is leaked. Fix this by calling put_device(), so that name can be freed in callback function kobject_cleanup(). unreferenced object 0xffff00c01aba2100 (size 128): comm "systemd-udevd", pid 1259, jiffies 4294903284 (age 294.152s) hex dump (first 32 bytes): 68 6e 61 65 30 00 00 00 18 21 ba 1a c0 00 ff ff hnae0....!...... 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000034783f26>] slab_post_alloc_hook+0xa0/0x3e0 [<00000000748188f2>] __kmem_cache_alloc_node+0x164/0x2b0 [<00000000ab0743e8>] __kmalloc_node_track_caller+0x6c/0x390 [<000000006c0ffb13>] kvasprintf+0x8c/0x118 [<00000000fa27bfe1>] kvasprintf_const+0x60/0xc8 [<0000000083e10ed7>] kobject_set_name_vargs+0x3c/0xc0 [<000000000b87affc>] dev_set_name+0x7c/0xa0 [<000000003fd8fe26>] hnae_ae_register+0xcc/0x190 [hnae] [<00000000fe97edc9>] hns_dsaf_ae_init+0x9c/0x108 [hns_dsaf] [<00000000c36ff1eb>] hns_dsaf_probe+0x548/0x748 [hns_dsaf]

References (8)

Core 8

Scores

CVSS v3 5.5
EPSS 0.0015
EPSS Percentile 4.3%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-401
Status published
Products (27)
linux/Kernel 4.10.0 - 4.14.298linux
linux/Kernel 4.15.0 - 4.19.264linux
linux/Kernel 4.20.0 - 5.4.221linux
linux/Kernel 4.4.0 - 4.9.332linux
linux/Kernel 5.11.0 - 5.15.76linux
linux/Kernel 5.16.0 - 6.0.6linux
linux/Kernel 5.5.0 - 5.10.152linux
Linux/Linux < 4.4
Linux/Linux 4.14.298 - 4.14.*
Linux/Linux 4.19.264 - 4.19.*
... and 17 more
Published Sep 16, 2025
Tracked Since Feb 18, 2026