CVE-2022-50854

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a memory leak in the virtual nci send() function within the NFC subsystem. Specifically, the skb (socket buffer) is not freed, leading to a memory leak reported by kmemleak. This issue can be reproduced using the nci dev tool in the tools/testing/selftests/nci directory. The backtrace indicates the issue originates from memory allocation within the NFC device up process.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.