CVE-2022-50660
BaseFortify
Publication date: 2025-12-09
Last updated on: 2025-12-09
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| intel | ipw2200 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a memory leak in the Linux kernel's ipw2200 wireless driver. Specifically, when an error occurs during the initialization function ipw_wdev_init(), the allocated memory is not properly released, leading to memory leakage. The same issue occurs in the ipw_pci_probe() function. This means that memory that should be freed remains allocated, potentially causing resource exhaustion over time.
How can this vulnerability impact me? :
The memory leak can cause the system to consume more memory than necessary, which may lead to degraded performance or system instability if the leak is significant or occurs repeatedly. Over time, this could result in resource exhaustion, potentially causing crashes or denial of service conditions on affected systems using the ipw2200 wireless driver.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, update the Linux kernel to a version where the ipw2200 driver has the memory leak fixed in ipw_wdev_init() and ipw_pci_probe(). This will ensure that memory is properly released in error paths, preventing memory leakage.