PT-2025-49620 · Linux+1 · Linux Kernel+1

Published

2025-12-09

Updated

2026-02-24

CVE-2022-50640

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel's mmc core component related to handling non-standard SDIO cards. Specifically, the issue arises from an incorrect reference counter management when a non-standard SDIO card is removed. The SDIO tuple is allocated only for standard SDIO cards, leading to memory corruption and potentially a kernel panic when a non-standard card is removed because the card device's reference counter is not properly incremented during initialization but is decremented during release.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2022-50640

RHSA-2024:9315

SUSE-SU-2026:0263-1

SUSE-SU-2026:0316-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:0350-1

SUSE-SU-2026:0369-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0617-1

Affected Products

Linux Kernel

Red Hat

PT-2025-49620 · Linux+1 · Linux Kernel+1

CVE-2022-50640

Related Identifiers

Affected Products

References · 1116