{"id":"CVE-2022-50245","summary":"rapidio: fix possible UAF when kfifo_alloc() fails","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nrapidio: fix possible UAF when kfifo_alloc() fails\n\nIf kfifo_alloc() fails in mport_cdev_open(), goto err_fifo and just free\npriv. But priv is still in the chdev-\u003efile_list, then list traversal\nmay cause UAF. This fixes the following smatch warning:\n\ndrivers/rapidio/devices/rio_mport_cdev.c:1930 mport_cdev_open() warn: '&priv-\u003elist' not removed from list","modified":"2026-04-02T08:28:21.004257Z","published":"2025-09-15T14:02:03.353Z","database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50245.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/02d7d89f816951e0862147d751b1150d67aaebdd"},{"type":"WEB","url":"https://git.kernel.org/stable/c/2a6c75adf8192f07ddcdd4a1a13488c890a73919"},{"type":"WEB","url":"https://git.kernel.org/stable/c/2ba06e57f933f0eac242e8b389433da1cc00d4d5"},{"type":"WEB","url":"https://git.kernel.org/stable/c/2dfd60724d271a6ab99f93f40f38f2ced1ddbb87"},{"type":"WEB","url":"https://git.kernel.org/stable/c/2f5cc7fd73fd6253cc71214f0dd499cc62feb469"},{"type":"WEB","url":"https://git.kernel.org/stable/c/311b488405ac45af46756b1c8f1d27007b68b07e"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5ee850645e42f541ce1ea8130c2b27cc495f965c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/a253dde0403a153075ffb254f6f7b2635e49e97a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/cb87af2c19c0993f6e21f75b963a5599c5a73e76"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50245.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-50245"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"e8de370188d098bb49483c287b44925957c3c9b6"},{"fixed":"2a6c75adf8192f07ddcdd4a1a13488c890a73919"},{"fixed":"2dfd60724d271a6ab99f93f40f38f2ced1ddbb87"},{"fixed":"a253dde0403a153075ffb254f6f7b2635e49e97a"},{"fixed":"311b488405ac45af46756b1c8f1d27007b68b07e"},{"fixed":"5ee850645e42f541ce1ea8130c2b27cc495f965c"},{"fixed":"2f5cc7fd73fd6253cc71214f0dd499cc62feb469"},{"fixed":"2ba06e57f933f0eac242e8b389433da1cc00d4d5"},{"fixed":"cb87af2c19c0993f6e21f75b963a5599c5a73e76"},{"fixed":"02d7d89f816951e0862147d751b1150d67aaebdd"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50245.json"}}],"schema_version":"1.7.5"}