Memory Leak Vulnerability in Linux Kernel Affects WWAN Device Registration
CVE-2022-50331

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 15 September 2025

What is CVE-2022-50331?

A memory leak vulnerability was identified in the Linux kernel affecting the WWAN device registration process. In scenarios where device registration fails during the module probing, the reference count for the kobject does not decrement to zero, leading to a name allocation leak in the dev_set_name() function. This leak can result in unreferenced objects persisting in memory, potentially affecting system performance and resource availability. The issue has been resolved by ensuring that the put_device() function is called, allowing proper cleanup of allocated memory in the kobject_cleanup() callback.

Affected Version(s)

Linux f36a111a74e71edbba27d4c0cf3d7bbccc172108 < 50c31fa952309536c6e4461ff815ddccc8dff9d5

Linux f36a111a74e71edbba27d4c0cf3d7bbccc172108

Linux f36a111a74e71edbba27d4c0cf3d7bbccc172108 < 258ad2fe5ede773625adfda88b173f4123e59f45

References

https://git.kernel.org/stable/c/50c31fa952309536c6e4461ff...

https://git.kernel.org/stable/c/d87973314aba6de80a49f4271...

https://git.kernel.org/stable/c/258ad2fe5ede773625adfda88...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 15, 2025
Vulnerability Reserved
Sep 15, 2025