github - ghsa-9qr2-gp6m-mxr4

ghsa-9qr2-gp6m-mxr4

Vulnerability from github

Published

2025-06-18 12:30

Modified

2025-06-18 12:30

Details

In the Linux kernel, the following vulnerability has been resolved:

mt76: mt76x02u: fix possible memory leak in __mt76x02u_mcu_send_msg

Free the skb if mt76u_bulk_msg fails in __mt76x02u_mcu_send_msg routine.

Show details on source website

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2022-50172"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-06-18T11:15:47Z",
    "severity": null
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nmt76: mt76x02u: fix possible memory leak in __mt76x02u_mcu_send_msg\n\nFree the skb if mt76u_bulk_msg fails in __mt76x02u_mcu_send_msg routine.",
  "id": "GHSA-9qr2-gp6m-mxr4",
  "modified": "2025-06-18T12:30:53Z",
  "published": "2025-06-18T12:30:53Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-50172"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/2f53ba46d8c97aca681adbe5098e1f84580c446d"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/3ad958bc488e3ecb0207d31621c00efb86f17482"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/cffd93411575afd987788e2ec3cb8eaff70f0215"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/da1ab462b96c5d47a0755aec957bae3d685538c5"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/f1609c4f4a21777e081b36596224802b85052ad9"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CVE-2022-50172 (GCVE-0-2022-50172)

Vulnerability from cvelistv5

Published

2025-06-18 11:03

Modified

2025-06-18 11:03

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: mt76: mt76x02u: fix possible memory leak in __mt76x02u_mcu_send_msg Free the skb if mt76u_bulk_msg fails in __mt76x02u_mcu_send_msg routine.

References

URL

Tags

	https://git.kernel.org/stable/c/3ad958bc488e3ecb0207d31621c00efb86f17482
	https://git.kernel.org/stable/c/f1609c4f4a21777e081b36596224802b85052ad9
	https://git.kernel.org/stable/c/da1ab462b96c5d47a0755aec957bae3d685538c5
	https://git.kernel.org/stable/c/2f53ba46d8c97aca681adbe5098e1f84580c446d
	https://git.kernel.org/stable/c/cffd93411575afd987788e2ec3cb8eaff70f0215

Impacted products

Vendor

Product

Version

Version: 4c89ff2c74e39b60f1f6e650721f6f92f007ea5b
Version: 4c89ff2c74e39b60f1f6e650721f6f92f007ea5b
Version: 4c89ff2c74e39b60f1f6e650721f6f92f007ea5b
Version: 4c89ff2c74e39b60f1f6e650721f6f92f007ea5b
Version: 4c89ff2c74e39b60f1f6e650721f6f92f007ea5b

Version: 4.20

Show details on NVD website

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/mediatek/mt76/mt76x02_usb_mcu.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "3ad958bc488e3ecb0207d31621c00efb86f17482",
              "status": "affected",
              "version": "4c89ff2c74e39b60f1f6e650721f6f92f007ea5b",
              "versionType": "git"
            },
            {
              "lessThan": "f1609c4f4a21777e081b36596224802b85052ad9",
              "status": "affected",
              "version": "4c89ff2c74e39b60f1f6e650721f6f92f007ea5b",
              "versionType": "git"
            },
            {
              "lessThan": "da1ab462b96c5d47a0755aec957bae3d685538c5",
              "status": "affected",
              "version": "4c89ff2c74e39b60f1f6e650721f6f92f007ea5b",
              "versionType": "git"
            },
            {
              "lessThan": "2f53ba46d8c97aca681adbe5098e1f84580c446d",
              "status": "affected",
              "version": "4c89ff2c74e39b60f1f6e650721f6f92f007ea5b",
              "versionType": "git"
            },
            {
              "lessThan": "cffd93411575afd987788e2ec3cb8eaff70f0215",
              "status": "affected",
              "version": "4c89ff2c74e39b60f1f6e650721f6f92f007ea5b",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/mediatek/mt76/mt76x02_usb_mcu.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.20"
            },
            {
              "lessThan": "4.20",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.137",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.61",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.18.*",
              "status": "unaffected",
              "version": "5.18.18",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.137",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.61",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.18.18",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.2",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmt76: mt76x02u: fix possible memory leak in __mt76x02u_mcu_send_msg\n\nFree the skb if mt76u_bulk_msg fails in __mt76x02u_mcu_send_msg routine."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-06-18T11:03:24.408Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/3ad958bc488e3ecb0207d31621c00efb86f17482"
        },
        {
          "url": "https://git.kernel.org/stable/c/f1609c4f4a21777e081b36596224802b85052ad9"
        },
        {
          "url": "https://git.kernel.org/stable/c/da1ab462b96c5d47a0755aec957bae3d685538c5"
        },
        {
          "url": "https://git.kernel.org/stable/c/2f53ba46d8c97aca681adbe5098e1f84580c446d"
        },
        {
          "url": "https://git.kernel.org/stable/c/cffd93411575afd987788e2ec3cb8eaff70f0215"
        }
      ],
      "title": "mt76: mt76x02u: fix possible memory leak in __mt76x02u_mcu_send_msg",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-50172",
    "datePublished": "2025-06-18T11:03:24.408Z",
    "dateReserved": "2025-06-18T10:57:27.427Z",
    "dateUpdated": "2025-06-18T11:03:24.408Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Log in or create an account to share your comment.

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.