CVE-2022-50866
Unknown Unknown - Not Provided
Null Pointer Dereference in Linux ASoC pxa Filter Function

Publication date: 2025-12-30

Last updated on: 2025-12-30

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: ASoC: pxa: fix null-pointer dereference in filter() kasprintf() would return NULL pointer when kmalloc() fail to allocate. Need to check the return pointer before calling strcmp().
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-30
Last Modified
2025-12-30
Generated
2026-06-16
AI Q&A
2025-12-30
EPSS Evaluated
2026-06-15
NVD
CVE-2022-50866
EUVD
EUVD-2022-55832
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a null-pointer dereference in the Linux kernel's ASoC pxa filter() function. It occurs because the function kasprintf() can return a NULL pointer if kmalloc() fails to allocate memory. The code did not check if the pointer was NULL before calling strcmp(), which can lead to a null-pointer dereference and potentially cause a kernel crash.

Impact Analysis

This vulnerability can cause the Linux kernel to crash due to a null-pointer dereference, leading to a denial of service. This can affect system stability and availability.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2022-50866. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart