File Pointer Leak in Linux Kernel’s Power Tools by Linux Foundation
CVE-2022-50189

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 June 2025

What is CVE-2022-50189?

A vulnerability exists in the Linux kernel's power management tools, specifically in the turbostat utility. When the function fscanf fails, the code fails to properly close an open file pointer before returning. This oversight leads to potential resource leakage, which could compromise system performance. The issue was identified through static analysis using cppcheck and has been addressed in subsequent patches to ensure proper resource management and prevent file pointer leaks.

Affected Version(s)

Linux eae97e053fe306edbbe60c934031edf9a8affd3f < 2ebf6f5946817f33fb33e613e359229e98164eb3

Linux eae97e053fe306edbbe60c934031edf9a8affd3f < 5e5fd36c58d6c820f7292ee492c3731c9a104a41

Linux 5.19

References

https://git.kernel.org/stable/c/2ebf6f5946817f33fb33e613e...

https://git.kernel.org/stable/c/5e5fd36c58d6c820f7292ee49...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 18, 2025
Vulnerability Reserved
Jun 18, 2025