Memory Leak Vulnerability in Linux Kernel Affecting HNS Networking Devices
CVE-2022-50352

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 September 2025

What is CVE-2022-50352?

A memory leak vulnerability in the Linux kernel has been identified, specifically in the handling of HNS networking devices. The issue arises when the device_register() function fails during module probing, resulting in an unreferenced object memory leak. This occurs if the reference count of the kobject does not drop to zero, preventing the allocated name from being freed. The vulnerability has been addressed by implementing a fix that calls put_device() to ensure proper memory cleanup through the callback function kobject_cleanup(), thereby mitigating potential memory management issues.

Affected Version(s)

Linux 6fe6611ff275522a4e4c0359e2f46cdd07780d2f

Linux 6fe6611ff275522a4e4c0359e2f46cdd07780d2f < 3b78453cca046d3b03853f0d077ad3ad130db886

Linux 6fe6611ff275522a4e4c0359e2f46cdd07780d2f < 7ae1345f6ad715acbcdc9e1ac28153684fd498bb

References

https://git.kernel.org/stable/c/a3c148955c22fe1d94d7a2096...

https://git.kernel.org/stable/c/3b78453cca046d3b03853f0d0...

https://git.kernel.org/stable/c/7ae1345f6ad715acbcdc9e1ac...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 16, 2025
Vulnerability Reserved
Sep 16, 2025