CVE-2022-50767
- Source
- https://cve.org/CVERecord?id=CVE-2022-50767
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-50767.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-50767
- Downstream
- Related
- Published
- 2025-12-24T13:05:57.569Z
- Modified
- 2026-03-20T12:22:38.355552Z
- Summary
- fbdev: smscufx: Fix several use-after-free bugs
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
fbdev: smscufx: Fix several use-after-free bugs
Several types of UAFs can occur when physically removing a USB device.
Adds ufxopsdestroy() function to .fbdestroy of fbops, and in this function, there is krefput() that finally calls ufxfree().
This fix prevents multiple UAFs.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50767.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/3f40852d671072836fb7ae331a1f28a24223c4e8
- https://git.kernel.org/stable/c/5385af2f89bc352fb70753ab41b2bb036190141f
- https://git.kernel.org/stable/c/6f2075ea883e5d7730d0c9ebb1bb8e7a1a7e953f
- https://git.kernel.org/stable/c/70faf9d9b6cc74418716bbf76fe75bd2da10ad4a
- https://git.kernel.org/stable/c/8d924b262f3178a9b17c17d4306a9f426c508bd9
- https://git.kernel.org/stable/c/cc67482c9e5f2c80d62f623bcc347c29f9f648e1
- https://git.kernel.org/stable/c/cc6a7249842fceda7574ceb63275a2d5e99d2862
- https://git.kernel.org/stable/c/d9ddfeb01fb95ffbbc7031d46a5ee2a5e45cbb86
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50767.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-50767
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced3c8a63e22a0802fd56380f6ab305b419f18eb6f5Fixed6f2075ea883e5d7730d0c9ebb1bb8e7a1a7e953fFixed3f40852d671072836fb7ae331a1f28a24223c4e8Fixed70faf9d9b6cc74418716bbf76fe75bd2da10ad4aFixed5385af2f89bc352fb70753ab41b2bb036190141fFixedd9ddfeb01fb95ffbbc7031d46a5ee2a5e45cbb86Fixedcc6a7249842fceda7574ceb63275a2d5e99d2862Fixed8d924b262f3178a9b17c17d4306a9f426c508bd9Fixedcc67482c9e5f2c80d62f623bcc347c29f9f648e1
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced3.2.0Fixed4.9.332
- Type
- ECOSYSTEM
- Events
-
Introduced4.10.0Fixed4.14.298
- Type
- ECOSYSTEM
- Events
-
Introduced4.15.0Fixed4.19.264
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.223
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.153
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.77
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.0.7