CVE-2022-50146

medium

Description

In the Linux kernel, the following vulnerability has been resolved: PCI: dwc: Deallocate EPC memory on dw_pcie_ep_init() errors If dw_pcie_ep_init() fails to perform any action after the EPC memory is initialized and the MSI memory region is allocated, the latter parts won't be undone thus causing a memory leak. Add a cleanup-on-error path to fix these leaks. [bhelgaas: commit log]

References

https://git.kernel.org/stable/c/e7599a5974d4c64eaae8009c3f2e47b9e3223e07

https://git.kernel.org/stable/c/b03a8f1264ea8c363bec9ef6e37b467f27cb04ea

https://git.kernel.org/stable/c/8161e9626b50892eaedbd8070ecb1586ecedb109

https://git.kernel.org/stable/c/3b453f5d06d1f1d6b20a75ea51dc7b53ae78f479

https://git.kernel.org/stable/c/2d546db5c80c45cac3ccd929550244fd58f4ff58

Details

Source: Mitre, NVD

Published: 2025-06-18

Updated: 2025-06-18

Risk Information

CVSS v2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:P

Severity: Low

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018