CVE-2022-50510

MEDIUM

Linux Kernel 5.2-6.1.1 Use-After-Free in SMMUv3 PMU Hotplug Callback

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: perf/smmuv3: Fix hotplug callback leak in arm_smmu_pmu_init() arm_smmu_pmu_init() won't remove the callback added by cpuhp_setup_state_multi() when platform_driver_register() failed. Remove the callback by cpuhp_remove_multi_state() in fail path. Similar to the handling of arm_ccn_init() in commit 26242b330093 ("bus: arm-ccn: Prevent hotplug callback leak")

References (6)

Core 6

Core References

Patch

https://git.kernel.org/stable/c/d69bdb61d577297d3851fc9f6403574bf73ef41f

Patch

https://git.kernel.org/stable/c/359286f886feef38536eaa7e673dc3440f03b0a1

Patch

https://git.kernel.org/stable/c/b131304fe722853cf26e55c4fa21fc58a36e7f21

Patch

https://git.kernel.org/stable/c/f245ca9a0fe7f794a8187ad803d5e2ced5a11cb2

Patch

https://git.kernel.org/stable/c/582babe17ea878ec1d76f30e03f3a6ce6e30eb91

Patch

https://git.kernel.org/stable/c/6f2d566b46436a50a80d6445e82879686b89588c

Scores

CVSS v3 5.5

EPSS 0.0014

EPSS Percentile 4.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (20)

linux/Kernel 5.11.0 - 5.15.86linux

linux/Kernel 5.16.0 - 6.0.16linux

linux/Kernel 5.2.0 - 5.4.229linux

linux/Kernel 5.5.0 - 5.10.163linux

linux/Kernel 6.1.0 - 6.1.2linux

Linux/Linux < 5.2

Linux/Linux 5.10.163 - 5.10.*

Linux/Linux 5.15.86 - 5.15.*

Linux/Linux 5.2

Linux/Linux 5.4.229 - 5.4.*

... and 10 more

Published Oct 07, 2025

Tracked Since Feb 18, 2026