CVE-2022-50848

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak was identified in the dio init() function within the Direct I/O (DIO) driver of the Linux kernel. Specifically, if the device register() function returns an error, the allocated memory for 'dev' and its name was not properly freed. This issue has been addressed by adding a release function and calling put device() in the error path, ensuring that the name is freed during kobject cleanup and 'dev' is freed within the release function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.