PT-2025-25960 · Linux+3 · Linux Kernel+3

Published

2022-06-10

Updated

2025-11-13

CVE-2022-50034

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue has been identified in the Linux kernel, specifically in the cdns3 gadget driver. The problem occurs when the cdns3 gadget ep free request() function frees the space pointed to by priv req, but priv req is still used in the subsequent list del init() call. This can lead to a use-after-free read in the list del entry valid() function. The issue is resolved by moving the list del init() call before the cdns3 gadget ep free request() call.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-416

Related Identifiers

BDU:2026-02576

CVE-2022-50034

RHSA-2023:2458

RHSA-2023_2458

SUSE-SU-2025:02264-1

SUSE-SU-2025:02321-1

SUSE-SU-2025:02322-1

SUSE-SU-2025:02537-1

SUSE-SU-2025:2264-1

SUSE-SU-2025_02264-1

SUSE-SU-2025_02537-1

Affected Products

Astra Linux

Linux Kernel

Red Hat

Suse

PT-2025-25960 · Linux+3 · Linux Kernel+3

CVE-2022-50034

Weakness Enumeration

Related Identifiers

Affected Products

References · 597