CVE-2022-50513

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the staging driver for rtl8723bs. Specifically, a memory leak exists in the rtw init cmd priv() function. If pcmdpriv->rsp allocated buf is allocated but fails, pcmdpriv->cmd allocated buf is not properly released. The patch addresses this by adding kfree(pcmdpriv->cmd allocated buf); to the error path within the rtw init cmd priv() function and simplifying the return logic. No runtime testing was performed due to the lack of a suitable device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401

Related Identifiers

BDU:2025-12812

CVE-2022-50513

SUSE-SU-2025:4111-1

SUSE-SU-2025:4135-1

SUSE-SU-2025:4139-1

SUSE-SU-2025:4149-1

SUSE-SU-2025:4188-1

SUSE-SU-2025:4320-1

Affected Products

Linux Kernel

Suse

Rtl8723Bs

CVE-2022-50513

Weakness Enumeration

Related Identifiers

Affected Products

References · 469