CVE-2022-50420

MEDIUM

Linux Kernel 5.5-5.15.85, 5.16.0-6.0.15, 6.1.0-6.1.1 - Use-After-Free in HPRE Remove Process

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/hpre - fix resource leak in remove process In hpre_remove(), when the disable operation of qm sriov failed, the following logic should continue to be executed to release the remaining resources that have been allocated, instead of returning directly, otherwise there will be resource leakage.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/2b3e3ecdb402ff1053ee25b598ff21b9ddf4384f

Patch

https://git.kernel.org/stable/c/4e0de941d252d4e7c985981e78480c8d6f020b64

Patch

https://git.kernel.org/stable/c/cb873c93a7ad27681920bf062ef052fca1e8d5b1

Patch

https://git.kernel.org/stable/c/45e6319bd5f2154d8b8c9f1eaa4ac030ba0d330c

Scores

CVSS v3 5.5

EPSS 0.0014

EPSS Percentile 3.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-401

Status published

Products (14)

linux/Kernel 5.16.0 - 6.0.16linux

linux/Kernel 5.5.0 - 5.15.86linux

linux/Kernel 6.1.0 - 6.1.2linux

Linux/Linux < 5.5

Linux/Linux 5.15.86 - 5.15.*

Linux/Linux 5.5

Linux/Linux 6.0.16 - 6.0.*

Linux/Linux 6.1.2 - 6.1.*

Linux/Linux 6.2

Linux/Linux c8b4b477079d1995cc0a1c10d5cdfd02be938cdf - 2b3e3ecdb402ff1053ee25b598ff21b9ddf4384f

... and 4 more

Published Oct 01, 2025

Tracked Since Feb 18, 2026