CVE-2022-50854
- Source
- https://cve.org/CVERecord?id=CVE-2022-50854
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50854.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-50854
- Downstream
- Published
- 2025-12-30T12:15:29.792Z
- Modified
- 2026-03-10T21:50:26.322345Z
- Summary
- nfc: virtual_ncidev: Fix memory leak in virtual_nci_send()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
nfc: virtualncidev: Fix memory leak in virtualnci_send()
skb should be free in virtualncisend(), otherwise kmemleak will report memleak.
Steps for reproduction (simulated in qemu): cd tools/testing/selftests/nci make ./nci_dev
BUG: memory leak unreferenced object 0xffff888107588000 (size 208): comm "nci_dev", pid 206, jiffies 4294945376 (age 368.248s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000008d94c8fd>] __allocskb+0x1da/0x290 [<00000000278bc7f8>] ncisendcmd+0xa3/0x350 [<0000000081256a22>] ncireset_req+0x6b/0xa0 [<000000009e721112>] __ncirequest+0x90/0x250 [<000000005d556e59>] ncidevup+0x217/0x5b0 [<00000000e618ce62>] nfcdevup+0x114/0x220 [<00000000981e226b>] nfcgenldevup+0x94/0xe0 [<000000009bb03517>] genlfamilyrcvmsgdoit.isra.14+0x228/0x2d0 [<00000000b7f8c101>] genlrcvmsg+0x35c/0x640 [<00000000c94075ff>] netlinkrcvskb+0x11e/0x350 [<00000000440cfb1e>] genlrcv+0x24/0x40 [<0000000062593b40>] netlinkunicast+0x43f/0x640 [<000000001d0b13cc>] netlink_sendmsg+0x73a/0xbf0 [<000000003272487f>] __sys_sendto+0x324/0x370 [<00000000ef9f1747>] __x64syssendto+0xdd/0x1b0 [<000000001e437841>] dosyscall64+0x3f/0x90
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50854.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/2c46a9a5f0b1c7341aa67667801079f3ff571678
- https://git.kernel.org/stable/c/88e879c9f59511174ef0ab1a3c9c83e2dbf8a213
- https://git.kernel.org/stable/c/e840d8f4a1b323973052a1af5ad4edafcde8ae3d
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50854.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-50854
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede624e6c3e777fb3dfed036b9da4d433aee3608a5Fixed88e879c9f59511174ef0ab1a3c9c83e2dbf8a213Fixed2c46a9a5f0b1c7341aa67667801079f3ff571678Fixede840d8f4a1b323973052a1af5ad4edafcde8ae3d