Memory Leak Vulnerability in Linux Kernel's ath11k Driver
CVE-2022-50418

5.5MEDIUM

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 September 2025

What is CVE-2022-50418?

The ath11k driver in the Linux kernel has a vulnerability that could lead to a memory leak. When the mhi_alloc_controller() function allocates memory for mhi_ctrl, it is critical that any errors during operations subsequently free this memory. However, the ath11k_mhi_read_addr_from_dt() function may return without calling mhi_free_controller() upon encountering an error, leaving allocated memory unused and potentially leading to resource depletion. This vulnerability underscores the importance of proper error handling in driver operations.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux d5c65159f2895379e11ca13f62feabe93278985d < 72ef896e80b6ec7cdc1dd42577045f8e7c9c32b3

Linux d5c65159f2895379e11ca13f62feabe93278985d < 015ced9eb63b8b19cb725a1d592d150b60494ced

Linux d5c65159f2895379e11ca13f62feabe93278985d < 43e7c3505ec70db3d3c6458824d5fa40f62e3e7b

References

https://git.kernel.org/stable/c/72ef896e80b6ec7cdc1dd4257...

https://git.kernel.org/stable/c/015ced9eb63b8b19cb725a1d5...

https://git.kernel.org/stable/c/43e7c3505ec70db3d3c645882...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 18, 2025
Vulnerability Reserved
Sep 17, 2025

JSON

Linux

What is CVE-2022-50418?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.