CVE-2022-50562
Awaiting Analysis Awaiting Analysis - Queue
BaseFortify

Publication date: 2025-10-22

Last updated on: 2025-10-22

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: tpm: acpi: Call acpi_put_table() to fix memory leak The start and length of the event log area are obtained from TPM2 or TCPA table, so we call acpi_get_table() to get the ACPI information, but the acpi_get_table() should be coupled with acpi_put_table() to release the ACPI memory, add the acpi_put_table() properly to fix the memory leak. While we are at it, remove the redundant empty line at the end of the tpm_read_log_acpi().
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-10-22
Last Modified
2025-10-22
Generated
2026-06-16
AI Q&A
2025-10-22
EPSS Evaluated
2026-06-15
NVD
CVE-2022-50562
EUVD
EUVD-2022-55666
Affected Vendors & Products
Currently, no data is known.
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Impact Analysis

The memory leak caused by this vulnerability can lead to inefficient memory usage in the Linux kernel, potentially degrading system performance or causing resource exhaustion over time if the leak is significant and persistent.

Executive Summary

This vulnerability is a memory leak in the Linux kernel related to the TPM (Trusted Platform Module) ACPI interface. Specifically, the function acpi_get_table() is used to obtain ACPI information from TPM2 or TCPA tables, but the corresponding acpi_put_table() function, which releases the allocated ACPI memory, was not called properly. This omission causes a memory leak, which has been fixed by adding the missing acpi_put_table() call.

Mitigation Strategies

To mitigate this vulnerability, update your Linux kernel to a version that includes the fix for the memory leak in the TPM ACPI code, specifically where acpi_put_table() is properly called to release ACPI memory. Applying the latest kernel patches or updates from your Linux distribution vendor is recommended.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2022-50562. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart