PT-2025-53020 · Linux+1 · Linux Kernel+1

Published

2025-12-24

Updated

2026-02-24

CVE-2022-50716

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.0.0-09039-ga6afa4199d3d-dirty #18

Description The Linux kernel contained a use-after-free flaw within the ar5523 Wi-Fi driver. Specifically, the issue occurred in the ar5523 cmd() function when a timeout occurred. The ar5523 probe() function frees the device structure, and subsequently, the ar5523 cmd tx cb() function could access this freed memory, leading to a potential system crash. The issue was identified through syzkaller testing. The vulnerability is triggered when ar5523 cmd() times out after being called by ar5523 host available() within ar5523 probe().

Recommendations Update to version 6.0.0-09039-ga6afa4199d3d-dirty #18 or a later version to address this issue.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2022-50716

SUSE-SU-2026:0263-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0473-1

SUSE-SU-2026:0617-1

Affected Products

Linux Kernel

Ar5523 Wi-Fi Driver

PT-2025-53020 · Linux+1 · Linux Kernel+1

CVE-2022-50716

Related Identifiers

Affected Products

References · 1180