CVE-2022-50512

MEDIUM

Linux Kernel 5.10-5.10.149, 5.11-5.15.74, 5.16-5.19.16, 5.20-6.0.2 - Use-After-Free in ext4_fc_record_regions

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: ext4: fix potential memory leak in ext4_fc_record_regions() As krealloc may return NULL, in this case 'state->fc_regions' may not be freed by krealloc, but 'state->fc_regions' already set NULL. Then will lead to 'state->fc_regions' memory leak.

References (5)

Core 5

Core References

Patch

https://git.kernel.org/stable/c/2cfb769d60a2a57eb3566765428b6131cd16dcfe

Patch

https://git.kernel.org/stable/c/417b0455a0b6d0f60a2930592731d1f8340e24be

Patch

https://git.kernel.org/stable/c/a4058b869e6c5e517c79e30532a350d0f3115c3e

Patch

https://git.kernel.org/stable/c/518566e71ad86b7c2f1bf6d9caee9588bb7ac158

Patch

https://git.kernel.org/stable/c/7069d105c1f15c442b68af43f7fde784f3126739

Scores

CVSS v3 5.5

EPSS 0.0014

EPSS Percentile 3.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (17)

linux/Kernel 5.10.0 - 5.10.150linux

linux/Kernel 5.11.0 - 5.15.75linux

linux/Kernel 5.16.0 - 5.19.17linux

linux/Kernel 5.20.0 - 6.0.3linux

Linux/Linux < 5.10

Linux/Linux 5.10

Linux/Linux 5.10.150 - 5.10.*

Linux/Linux 5.15.75 - 5.15.*

Linux/Linux 5.19.17 - 5.19.*

Linux/Linux 6.0.3 - 6.0.*

... and 7 more

Published Oct 07, 2025

Tracked Since Feb 18, 2026