Memory Leak in Linux Kernel Affecting ath11k Driver
CVE-2022-50186

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 June 2025

What is CVE-2022-50186?

The ath11k driver in the Linux kernel suffered from a vulnerability that resulted in a memory leak due to errors in the htc_tx_completion handling logic. Specifically, when an error occurs, the associated socket buffer (skb) is not properly freed, leading to memory not being reclaimed. This bug can potentially degrade system performance by consuming memory unnecessarily. The issue is resolved by ensuring that the skb is effectively freed when errors occur, particularly for endpoint IDs greater than or equal to ATH11K_HTC_EP_COUNT.

Affected Version(s)

Linux f951380a6022440335f668f85296096ba13071ba

Linux f951380a6022440335f668f85296096ba13071ba < 1f1483361585ae7556492f50f83f038bbdf8c294

Linux f951380a6022440335f668f85296096ba13071ba

References

https://git.kernel.org/stable/c/dda25326839d6e6b1fe59e796...

https://git.kernel.org/stable/c/1f1483361585ae7556492f50f...

https://git.kernel.org/stable/c/e5646fe3b7ef739c392e59da7...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 18, 2025
Vulnerability Reserved
Jun 18, 2025