Use-After-Free Vulnerability in Linux Kernel Affecting ACPI Components
CVE-2022-50423

7.8HIGH

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
1 October 2025

What is CVE-2022-50423?

A use-after-free vulnerability has been identified within the Linux kernel's ACPI subsystem. This issue arises when the function acpi_ut_copy_ipackage_to_ipackage() fails, resulting in the premature release of the acpi_operand_object. As a consequence, multiple references may be released, leading to potential exploitation during the handling of internal package objects, specifically through the acpi_ut_remove_reference() function. This flaw exposes the kernel to risks associated with memory corruption, impacting system stability and security. The vulnerability has been addressed to ensure proper memory management and references handling to prevent such occurrences.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 8aa5e56eeb61a099ea6519eb30ee399e1bc043ce < 133462d35dae95edb944af86b986d4c9dec59bd1

Linux 8aa5e56eeb61a099ea6519eb30ee399e1bc043ce < 02f237423c9c6a18e062de2d474f85d5659e4eb9

Linux 8aa5e56eeb61a099ea6519eb30ee399e1bc043ce

References

https://git.kernel.org/stable/c/133462d35dae95edb944af86b...
https://git.kernel.org/stable/c/02f237423c9c6a18e062de2d4...
https://git.kernel.org/stable/c/c9125b643fc51b8e662f2f614...

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.