CVE-2022-50034

usb: cdns3 fix use-after-free at workaround 2

Description

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3 fix use-after-free at workaround 2 BUG: KFENCE: use-after-free read in __list_del_entry_valid+0x10/0xac cdns3_wa2_remove_old_request() { ... kfree(priv_req->request.buf); cdns3_gadget_ep_free_request(&priv_ep->endpoint, &priv_req->request); list_del_init(&priv_req->list); ^^^ use after free ... } cdns3_gadget_ep_free_request() free the space pointed by priv_req, but priv_req is used in the following list_del_init(). This patch move list_del_init() before cdns3_gadget_ep_free_request().

N/A
CVSS
Severity:
EPSS 0.02%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/e65d9b7147d7be3504893ca7dfb85286bda83d40
https://git.kernel.org/stable/c/6d7ac60098b206d0472475b666cb09d556bec03d
https://git.kernel.org/stable/c/c3c1dbad3a2db32ecf371c97f2058491b8ba0f9a
https://git.kernel.org/stable/c/6fd50446e7c9a98b4bcf96815f5c9602a16ea472
https://git.kernel.org/stable/c/7d602f30149a117eea260208b1661bc404c21dfd

Frequently Asked Questions

What is the severity of CVE-2022-50034?
CVE-2022-50034 has not yet been assigned a CVSS score.
How to fix CVE-2022-50034?
To fix CVE-2022-50034, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-50034 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2022-50034 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-50034?
CVE-2022-50034 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.