PT-2025-53133 · Linux · Linux Kernel

Published

2025-12-24

Updated

2026-02-24

CVE-2022-50767

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains use-after-free flaws within the fbdev and smscufx components. These flaws can occur when a USB device is physically removed. The fix introduces the ufx ops destroy() function to the fb destroy method of fb ops, which includes a kref put() call that ultimately invokes ufx free(). This change aims to prevent multiple use-after-free conditions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2022-50767

SUSE-SU-2026:0263-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:0350-1

SUSE-SU-2026:0369-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0617-1

Affected Products

Linux Kernel

PT-2025-53133 · Linux · Linux Kernel

CVE-2022-50767

Related Identifiers

Affected Products

References · 984