Double Free Vulnerability in Linux Kernel's DVB-Core Component
CVE-2022-50499

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 4 October 2025

What is CVE-2022-50499?

A vulnerability in the Linux kernel's DVB-core component can lead to a double free error, occurring during the process of registering a media device. If the initialization of dvb->entity fails, the function incorrectly attempts to free the entity again during error handling, which may cause a use after free condition. This flaw potentially compromises system integrity and stability by allowing attackers to manipulate memory allocation processes. Proper handling of memory freeing is vital to ensure the security and reliability of the Linux kernel.

Affected Version(s)

Linux 9db28659aa893c68f162b11fd63bb7f6a713e52f < 0588b12c418c3e4f927ced11f27b02ef4a5bfb07

Linux 1399a136127bfe1b9bb7c951d9851da62a519121

Linux 4df2427a5148093987437054bb82da4d014dcd59 < 70bc51303871159796b55ba1a8f16637b46c2511

References

https://git.kernel.org/stable/c/0588b12c418c3e4f927ced11f...

https://git.kernel.org/stable/c/e9a78485b658361fab6a55473...

https://git.kernel.org/stable/c/70bc51303871159796b55ba1a...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 4, 2025
Vulnerability Reserved
Oct 4, 2025

JSON