CVE-2022-50469

MEDIUM

Linux Kernel 4.12-5.15.75, 5.16-5.19.17, 5.20-6.0.3 - Use-After-Free in rtw_init_drv_sw

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix potential memory leak in rtw_init_drv_sw() In rtw_init_drv_sw(), there are various init functions are called to populate the padapter structure and some checks for their return value. However, except for the first one error path, the other five error paths do not properly release the previous allocated resources, which leads to various memory leaks. This patch fixes them and keeps the success and error separate. Note that these changes keep the form of `rtw_init_drv_sw()` in "drivers/staging/r8188eu/os_dep/os_intfs.c". As there is no proper device to test with, no runtime testing was performed.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/b4573a2bad3c3e2643ef3939079eb7035a30e6ee

Patch

https://git.kernel.org/stable/c/6b2052b365f8035ab7f09ac24b5b499002b298cb

Patch

https://git.kernel.org/stable/c/d95d1526d9f06978c1a7186810a5490d72c62742

Patch

https://git.kernel.org/stable/c/5a5aa9cce621e2c0e25a1e5d72d6be1749167cc0

Scores

CVSS v3 5.5

EPSS 0.0014

EPSS Percentile 3.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (14)

linux/Kernel 4.12.0 - 5.15.75linux

linux/Kernel 5.16.0 - 5.19.17linux

linux/Kernel 5.20.0 - 6.0.3linux

Linux/Linux < 4.12

Linux/Linux 4.12

Linux/Linux 5.15.75 - 5.15.*

Linux/Linux 5.19.17 - 5.19.*

Linux/Linux 554c0a3abf216c991c5ebddcdb2c08689ecd290b - 5a5aa9cce621e2c0e25a1e5d72d6be1749167cc0

Linux/Linux 554c0a3abf216c991c5ebddcdb2c08689ecd290b - 6b2052b365f8035ab7f09ac24b5b499002b298cb

Linux/Linux 554c0a3abf216c991c5ebddcdb2c08689ecd290b - b4573a2bad3c3e2643ef3939079eb7035a30e6ee

... and 4 more

Published Oct 01, 2025

Tracked Since Feb 18, 2026