Linux Kernel Memory Leak Vulnerability in fbdev Component
CVE-2022-50404

5.5MEDIUM

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 September 2025

What is CVE-2022-50404?

A memory leak vulnerability exists within the Linux kernel's fbdev component, specifically during the execution of the fbcon_do_set_font() function. This issue arises when the changes made by the vc_resize() function fail, leading to an allocated buffer not being released. Consequently, this oversight can result in a gradual increase in memory usage, potentially degrading system performance. It is crucial for users and system administrators to apply the necessary updates to mitigate this vulnerability and ensure optimal kernel performance.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 868749a7456dc48e93887a8474194e2ee6d6c21f < 5a341810a22e51c3a7a108f7896b5fd58d44d127

Linux ebd6f886aa2447fcfcdce5450c9e1028e1d681bb < 88ec6d11052da527eb9268831e7a9bc5bbad02f6

Linux a5a923038d70d2d4a86cb4e3f32625a5ee6e7e24 < 06926607b9fddf7ce8017493899ce6eb7e79a123

References

https://git.kernel.org/stable/c/5a341810a22e51c3a7a108f78...

https://git.kernel.org/stable/c/88ec6d11052da527eb9268831...

https://git.kernel.org/stable/c/06926607b9fddf7ce80174938...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 18, 2025
Vulnerability Reserved
Sep 17, 2025

JSON

Linux

What is CVE-2022-50404?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.