CVE-2022-50633

medium

Description

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: qcom: Fix memory leak in dwc3_qcom_interconnect_init of_icc_get() alloc resources for path handle, we should release it when not need anymore. Like the release in dwc3_qcom_interconnect_exit() function. Add icc_put() in error handling to fix this.

References

https://git.kernel.org/stable/c/f9089b95548f0272e02a89989c511e235561d051

https://git.kernel.org/stable/c/97a48da1619ba6bd42a0e5da0a03aa490a9496b1

https://git.kernel.org/stable/c/8c39c8d23ff9fb1beb6e16cf0ae929c764538625

https://git.kernel.org/stable/c/56f6de394f0f57928cd401255a5c7866b68a77e3

https://git.kernel.org/stable/c/2f3b51189f7a7be5d822fb8c537d778c57eb9821

Details

Source: Mitre, NVD

Published: 2025-12-09

Updated: 2025-12-09

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018