CVE-2022-50542

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a use-after-free issue in the si470x int in callback() function. This occurs when the urb->context, which contains a struct si470x device object, is freed while si470x int in callback() is called. The root cause is that the function is invoked for a freed urb. Specifically, the issue arises when si470x start usb() fails, leading to the freeing of the struct si470x device object without properly handling the associated urb. The si470x usb driver probe() function calls si470x start usb(), which then calls usb submit urb() and si470x start(). If si470x start usb() fails, the struct si470x device object is freed, but the urb is not terminated.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.