Memory Leak Vulnerability in Linux Kernel's Netdevsim Driver
CVE-2022-50500

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 4 October 2025

What is CVE-2022-50500?

In the Linux Kernel, a vulnerability in the netdevsim driver has been identified that results in a memory leak when the nsim_dev_resources_register() function fails during initialization. This can cause memory resources to remain unreferenced, leading to potential degradation of system performance. Specifically, if certain items within the nsim_dev_resources_register() fail, it prevents the proper management of allocated memory, resulting in unfreed memory blocks that could accumulate over time, ultimately impacting system stability. Users are advised to apply the latest patches to mitigate this issue.

Affected Version(s)

Linux 37923ed6b8cea94d7d76038e2f72c57a0b45daab < 7c4957fe40e2a628b7cceaf4c9bfb5b701774d05

Linux 37923ed6b8cea94d7d76038e2f72c57a0b45daab < 6b1da9f7126f05e857da6db24c6a04aa7974d644

Linux 4.17

References

https://git.kernel.org/stable/c/7c4957fe40e2a628b7cceaf4c...

https://git.kernel.org/stable/c/6b1da9f7126f05e857da6db24...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 4, 2025
Vulnerability Reserved
Oct 4, 2025

JSON