CVE-2022-50420

MEDIUM

Linux Kernel < 5.15.86 - Memory Leak

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/hpre - fix resource leak in remove process In hpre_remove(), when the disable operation of qm sriov failed, the following logic should continue to be executed to release the remaining resources that have been allocated, instead of returning directly, otherwise there will be resource leakage.

References (4)

[Patch] https://git.kernel.org/stable/c/2b3e3ecdb402ff1053ee25b598ff21b9ddf4384f

[Patch] https://git.kernel.org/stable/c/45e6319bd5f2154d8b8c9f1eaa4ac030ba0d330c

[Patch] https://git.kernel.org/stable/c/4e0de941d252d4e7c985981e78480c8d6f020b64

[Patch] https://git.kernel.org/stable/c/cb873c93a7ad27681920bf062ef052fca1e8d5b1

Scores

CVSS v3 5.5

EPSS 0.0002

EPSS Percentile 4.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-401

Status published

Affected Products (4)

linux/linux_kernel < 5.15.86

linux/Kernel < 5.15.86linux

linux/Kernel < 6.0.16linux

linux/Kernel < 6.1.2linux

Timeline

Published Oct 01, 2025

Tracked Since Feb 18, 2026