PT-2025-53986 · Linux+1 · Linux Kernel+1

Published

2025-12-30

Updated

2026-02-24

CVE-2022-50868

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A reference count leak exists in the Linux kernel’s hardware random number generator (hwrng) AMD driver. The issue stems from the for each pci dev() loop, implemented by pci get device(), which does not always decrease the reference count for PCI devices when the loop is exited prematurely with a non-NULL pdev. Specifically, the missing pci dev put() call on both normal and error paths leads to a PCI device reference count leak.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2022-50868

SUSE-SU-2026:0263-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0473-1

SUSE-SU-2026:0617-1

Affected Products

Amd

Linux Kernel

PT-2025-53986 · Linux+1 · Linux Kernel+1

CVE-2022-50868

Related Identifiers

Affected Products

References · 1181