CVE-2022-50873
- Source
- https://cve.org/CVERecord?id=CVE-2022-50873
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50873.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-50873
- Downstream
- Related
- Published
- 2025-12-30T12:15:42.705Z
- Modified
- 2026-04-02T08:28:48.825375Z
- Summary
- vdpa/vp_vdpa: fix kfree a wrong pointer in vp_vdpa_remove
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
vdpa/vpvdpa: fix kfree a wrong pointer in vpvdpa_remove
In vpvdparemove(), the code kfree(&vpvdpamgtdev->mgtdev.id_table) uses a reference of pointer as the argument of kfree, which is the wrong pointer and then may hit crash like this:
Unable to handle kernel paging request at virtual address 00ffff003363e30c Internal error: Oops: 96000004 [#1] SMP Call trace: rbnext+0x20/0x5c ext4readdir+0x494/0x5c4 [ext4] iterate_dir+0x168/0x1b4 __sesysgetdents64+0x68/0x170 __arm64sysgetdents64+0x24/0x30 el0svccommon.constprop.0+0x7c/0x1bc doel0svc+0x2c/0x94 el0svc+0x20/0x30 el0synchandler+0xb0/0xb4 el0sync+0x160/0x180 Code: 54000220 f9400441 b4000161 aa0103e0 (f9400821) SMP: stopping secondary CPUs Starting crashdump kernel...
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50873.json" }- References
-
- https://git.kernel.org/stable/c/6ccc891f36d0c20ee220551caabdcd3886ec584b
- https://git.kernel.org/stable/c/8fe12680b2c731201519935013ec9219c93ec540
- https://git.kernel.org/stable/c/ed843d6ed7310a27cf7c8ee0a82a482eed0cb4a6
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50873.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-50873
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git