Linux Kernel Cros USBPD Notify Driver Error Handling Vulnerability
CVE-2022-50468

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 1 October 2025

What is CVE-2022-50468?

A vulnerability exists in the Cros USBPD Notify driver within the Linux kernel, where the initialization function cros_usbpd_notify_init() fails to adequately check for errors after attempting to register a platform driver. This oversight can lead to the driver being installed even if the registration was unsuccessful. As a result, the unregistration process may not be adequately handled, generating warnings about unexpected driver unregistration during operations such as module removal. The issue has been identified and fixed by incorporating a check to confirm successful registration before proceeding with installation.

Affected Version(s)

Linux ec2daf6e33f9f9113ba085b6ff88592907b6f1ce < 5c0cacdd354987f8f5348d16908716f154047890

Linux ec2daf6e33f9f9113ba085b6ff88592907b6f1ce

Linux ec2daf6e33f9f9113ba085b6ff88592907b6f1ce < 7b6ee54995739202b4a0cc01b7e9269f761c573d

References

https://git.kernel.org/stable/c/5c0cacdd354987f8f5348d169...

https://git.kernel.org/stable/c/cab345f9d51943898e406275f...

https://git.kernel.org/stable/c/7b6ee54995739202b4a0cc01b...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 1, 2025
Vulnerability Reserved
Oct 1, 2025

JSON