VDB

CVE-2022-50361

CVE-2022-50361 PUBLISHED CVSS 5.5 MEDIUM

Reported by Linux · Published September 17, 2025

In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: add missing unregister_netdev() in wilc_netdev_ifc_init() Fault injection test reports this issue: kernel BUG at net/core/dev.c:10731! invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI Call Trace: <TASK> wilc_netdev_ifc_init+0x19f/0x220 [wilc1000 884bf126e9e98af6a708f266a8dffd53f99e4bf5] wilc_cfg80211_init+0x30c/0x380 [wilc1000 884bf126e9e98af6a708f266a8dffd53f99e4bf5] wilc_bus_probe+0xad/0x2b0 [wilc1000_spi 1520a7539b6589cc6cde2ae826a523a33f8bacff] spi_probe+0xe4/0x140 really_probe+0x17e/0x3f0 __driver_probe_device+0xe3/0x170 driver_probe_device+0x49/0x120 The root case here is alloc_ordered_workqueue() fails, but cfg80211_unregister_netdevice() or unregister_netdev() not be called in error handling path. To fix add unregister_netdev goto lable to add the unregister operation in error handling path.

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
LinuxLinux09ed8bfc5215ad5aac91c50008277b5586b9ef24, 09ed8bfc5215ad5aac91c50008277b5586b9ef24, 09ed8bfc5215ad5aac91c50008277b5586b9ef24
LinuxLinux5.17, 0, 6.1.16
linuxlinux_kernel5.17, 5.17, 5.17
LinuxLinux09ed8bfc5215ad5aac91c50008277b5586b9ef24, 09ed8bfc5215ad5aac91c50008277b5586b9ef24, 5.17

Timeline

  • Sep 17, 2025 CVE Published
  • Sep 18, 2025 EPSS Score
  • Sep 25, 2025 EPSS Score
  • Oct 2, 2025 EPSS Score
  • Oct 9, 2025 EPSS Score
  • Oct 16, 2025 EPSS Score
  • Oct 23, 2025 EPSS Score
  • Oct 30, 2025 EPSS Score
  • Nov 6, 2025 EPSS Score
  • Nov 14, 2025 EPSS Score
  • Nov 21, 2025 EPSS Score
  • Nov 28, 2025 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›