CVE-2022-50146

PCI: dwc: Deallocate EPC memory on dw_pcie_ep_init() errors

Description

In the Linux kernel, the following vulnerability has been resolved: PCI: dwc: Deallocate EPC memory on dw_pcie_ep_init() errors If dw_pcie_ep_init() fails to perform any action after the EPC memory is initialized and the MSI memory region is allocated, the latter parts won't be undone thus causing a memory leak. Add a cleanup-on-error path to fix these leaks. [bhelgaas: commit log]

N/A
CVSS
Severity:
EPSS 0.02%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/e7599a5974d4c64eaae8009c3f2e47b9e3223e07
https://git.kernel.org/stable/c/b03a8f1264ea8c363bec9ef6e37b467f27cb04ea
https://git.kernel.org/stable/c/2d546db5c80c45cac3ccd929550244fd58f4ff58
https://git.kernel.org/stable/c/3b453f5d06d1f1d6b20a75ea51dc7b53ae78f479
https://git.kernel.org/stable/c/8161e9626b50892eaedbd8070ecb1586ecedb109

Frequently Asked Questions

What is the severity of CVE-2022-50146?
CVE-2022-50146 has not yet been assigned a CVSS score.
How to fix CVE-2022-50146?
To fix CVE-2022-50146, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-50146 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2022-50146 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-50146?
CVE-2022-50146 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.