Memory Leak Vulnerability in Linux Kernel's tifm Driver
CVE-2022-50349

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 September 2025

What is CVE-2022-50349?

A memory leak issue has been identified in the Linux kernel's tifm driver, specifically within the tifm_7xx1_switch_media() function. This vulnerability occurs when device_register() fails during device addition, resulting in the unintended exposure of kobject names allocated during the process. It is crucial for developers to utilize put_device() correctly to relinquish device references rather than freeing the device directly, which could lead to significant memory management issues and potentially affect system stability.

Affected Version(s)

Linux 2428a8fe2261e901e058d9ea8b6ed7e1b4268b79 < 2bbb222a54ff501f77ce593d21b76b79c905045e

Linux 2428a8fe2261e901e058d9ea8b6ed7e1b4268b79

Linux 2428a8fe2261e901e058d9ea8b6ed7e1b4268b79 < 1695b1adcc3a7d985cd22fa3b55761edf3fab50d

References

https://git.kernel.org/stable/c/2bbb222a54ff501f77ce593d2...
https://git.kernel.org/stable/c/d861b7d41b17942b337d4b87a...
https://git.kernel.org/stable/c/1695b1adcc3a7d985cd22fa3b...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2022-50349 : Memory Leak Vulnerability in Linux Kernel's tifm Driver