CVE-2022-50245

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a use-after-free (UAF) issue within the rapidio component. Specifically, a failure in the kfifo alloc() function during mport cdev open() can lead to a UAF condition. This occurs because the priv structure remains in the chdev->file list even after being freed, potentially causing issues during list traversal. The kfifo alloc() function is responsible for allocating a kernel FIFO (First-In, First-Out) buffer. A UAF vulnerability arises when memory is freed and then subsequently accessed, leading to unpredictable behavior or potential security exploits.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.