CVE-2022-50618

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel where the mmc add host() function's return value is not properly checked. If mmc add host() returns an error, the allocated memory in mmc alloc host() is leaked, and a subsequent call to mmc remove host() in the remove path can cause a kernel crash due to a null-pointer dereference in device del(). The issue occurs because the device is not added correctly, but the removal process attempts to delete it.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.