fkie_nvd - fkie_cve-2022-50384

fkie_cve-2022-50384

Vulnerability from fkie_nvd

Published

2025-09-18 14:15

Modified

2025-09-19 16:00

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: staging: vme_user: Fix possible UAF in tsi148_dma_list_add Smatch report warning as follows: drivers/staging/vme_user/vme_tsi148.c:1757 tsi148_dma_list_add() warn: '&entry->list' not removed from list In tsi148_dma_list_add(), the error path "goto err_dma" will not remove entry->list from list->entries, but entry will be freed, then list traversal may cause UAF. Fix by removeing it from list->entries before free().

References

	URL	Tags
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/1f5661388f43df3ac106ce93e67d8d22b16a78ff
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/357057ee55d3c99a5de5abe8150f7bca04f8e53b
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/51c0ad3b7c5b01f9314758335a13f157b05fa56d
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/5cc4eea715a3fcf4e516662f736dfee63979465f
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/5d2b286eb034af114f67d9967fc3fbc1829bb712
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/85db68fc901da52314ded80aace99f8b684c7815
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/a45ba33d398a821147d7e5f16ead7eb125e331e2
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/cf138759a7e92c75cfc1b7ba705e4108fe330edf
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/e6b0adff99edf246ba1f8d464530a0438cb1cbda

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: vme_user: Fix possible UAF in tsi148_dma_list_add\n\nSmatch report warning as follows:\n\ndrivers/staging/vme_user/vme_tsi148.c:1757 tsi148_dma_list_add() warn:\n  \u0027\u0026entry-\u003elist\u0027 not removed from list\n\nIn tsi148_dma_list_add(), the error path \"goto err_dma\" will not\nremove entry-\u003elist from list-\u003eentries, but entry will be freed,\nthen list traversal may cause UAF.\n\nFix by removeing it from list-\u003eentries before free()."
    }
  ],
  "id": "CVE-2022-50384",
  "lastModified": "2025-09-19T16:00:46.437",
  "metrics": {},
  "published": "2025-09-18T14:15:37.230",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/1f5661388f43df3ac106ce93e67d8d22b16a78ff"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/357057ee55d3c99a5de5abe8150f7bca04f8e53b"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/51c0ad3b7c5b01f9314758335a13f157b05fa56d"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/5cc4eea715a3fcf4e516662f736dfee63979465f"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/5d2b286eb034af114f67d9967fc3fbc1829bb712"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/85db68fc901da52314ded80aace99f8b684c7815"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/a45ba33d398a821147d7e5f16ead7eb125e331e2"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/cf138759a7e92c75cfc1b7ba705e4108fe330edf"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/e6b0adff99edf246ba1f8d464530a0438cb1cbda"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Awaiting Analysis"
}

CVE-2022-50384 (GCVE-0-2022-50384)

Vulnerability from cvelistv5

Published

2025-09-18 13:33

Modified

2025-09-18 13:33

Severity ?

Summary

References

URL

Tags

	https://git.kernel.org/stable/c/5cc4eea715a3fcf4e516662f736dfee63979465f
	https://git.kernel.org/stable/c/51c0ad3b7c5b01f9314758335a13f157b05fa56d
	https://git.kernel.org/stable/c/e6b0adff99edf246ba1f8d464530a0438cb1cbda
	https://git.kernel.org/stable/c/a45ba33d398a821147d7e5f16ead7eb125e331e2
	https://git.kernel.org/stable/c/5d2b286eb034af114f67d9967fc3fbc1829bb712
	https://git.kernel.org/stable/c/1f5661388f43df3ac106ce93e67d8d22b16a78ff
	https://git.kernel.org/stable/c/cf138759a7e92c75cfc1b7ba705e4108fe330edf
	https://git.kernel.org/stable/c/85db68fc901da52314ded80aace99f8b684c7815
	https://git.kernel.org/stable/c/357057ee55d3c99a5de5abe8150f7bca04f8e53b

Impacted products

Vendor

Product

Version

Linux

Version: b2383c90a9d691201b9aee557776694cde86a935
Version: b2383c90a9d691201b9aee557776694cde86a935
Version: b2383c90a9d691201b9aee557776694cde86a935
Version: b2383c90a9d691201b9aee557776694cde86a935
Version: b2383c90a9d691201b9aee557776694cde86a935
Version: b2383c90a9d691201b9aee557776694cde86a935
Version: b2383c90a9d691201b9aee557776694cde86a935
Version: b2383c90a9d691201b9aee557776694cde86a935
Version: b2383c90a9d691201b9aee557776694cde86a935

Linux

Version: 4.2

Show details on NVD website