CVE-2022-50562

medium

Description

In the Linux kernel, the following vulnerability has been resolved: tpm: acpi: Call acpi_put_table() to fix memory leak The start and length of the event log area are obtained from TPM2 or TCPA table, so we call acpi_get_table() to get the ACPI information, but the acpi_get_table() should be coupled with acpi_put_table() to release the ACPI memory, add the acpi_put_table() properly to fix the memory leak. While we are at it, remove the redundant empty line at the end of the tpm_read_log_acpi().

References

https://git.kernel.org/stable/c/bf31e3f8077af539feaf4e9bbf82e8eb51e7e5a8

https://git.kernel.org/stable/c/8ddc48068ac85740d3d5f9f3b0b323e733a35b33

https://git.kernel.org/stable/c/8740a12ca2e2959531ad253bac99ada338b33d80

https://git.kernel.org/stable/c/694a3d66f493afd77c704c6de91d9be4d6e004e4

https://git.kernel.org/stable/c/638cd298dfebce46919cbd6cf1884701215f506d

Details

Source: Mitre, NVD

Published: 2025-10-22

Updated: 2025-10-22

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018