CVE-2022-50857

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel related to the rapidio subsystem and the rio register mport() function. Specifically, if the device register() function returns an error, the name allocated by dev set name() is not properly freed. This occurs because the code fails to use put device() in the error path, preventing the name from being freed during kobject cleanup and the port's removal from the rio mports list. This results in a potential name leak.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.