CVE-2022-50653
- Source
- https://cve.org/CVERecord?id=CVE-2022-50653
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-50653.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-50653
- Downstream
- Related
- Published
- 2025-12-09T00:00:27.592Z
- Modified
- 2026-03-20T11:47:34.148761Z
- Summary
- mmc: atmel-mci: fix return value check of mmc_add_host()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
mmc: atmel-mci: fix return value check of mmcaddhost()
mmcaddhost() may return error, if we ignore its return value, it will lead two issues: 1. The memory that allocated in mmcallochost() is leaked. 2. In the remove() path, mmcremovehost() will be called to delete device, but it's not added yet, it will lead a kernel crash because of null-ptr-deref in device_del().
So fix this by checking the return value and calling mmcfreehost() in the error path.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50653.json" }- References
-
- https://git.kernel.org/stable/c/00ac0f5f95920f003cd6ece53cdc759549b69118
- https://git.kernel.org/stable/c/1925472dec31ec061d57412b3a65a056ea24f340
- https://git.kernel.org/stable/c/6bb26abb92f25e582a0976091a10b539fe3796db
- https://git.kernel.org/stable/c/85946ceb0fac20ab39cdb85333086daf0291a553
- https://git.kernel.org/stable/c/99a6cdfa2cf05028b52f6d8ee85ccc5f8b71b4a2
- https://git.kernel.org/stable/c/9e6e8c43726673ca2abcaac87640b9215fd72f4c
- https://git.kernel.org/stable/c/cc8bb436f3c842a86b9082d97933582120d180e2
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50653.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-50653
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7d2be0749a59096a334c94dc48f43294193cb8edFixed99a6cdfa2cf05028b52f6d8ee85ccc5f8b71b4a2Fixed6bb26abb92f25e582a0976091a10b539fe3796dbFixed00ac0f5f95920f003cd6ece53cdc759549b69118Fixed1925472dec31ec061d57412b3a65a056ea24f340Fixedcc8bb436f3c842a86b9082d97933582120d180e2Fixed85946ceb0fac20ab39cdb85333086daf0291a553Fixed9e6e8c43726673ca2abcaac87640b9215fd72f4c
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced2.6.27Fixed4.19.270
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.229
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.163
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.86
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.0.16
- Type
- ECOSYSTEM
- Events
-
Introduced6.1.0Fixed6.1.2