VDB

CVE-2022-50538

CVE-2022-50538 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: vme: Fix error not catched in fake_init() In fake_init(), __root_device_register() is possible to fail but it's ignored, which can cause unregistering vme_root fail when exit. general protection fault, probably for non-canonical address 0xdffffc000000008c KASAN: null-ptr-deref in range [0x0000000000000460-0x0000000000000467] RIP: 0010:root_device_unregister+0x26/0x60 Call Trace: <TASK> __x64_sys_delete_module+0x34f/0x540 do_syscall_64+0x38/0x90 entry_SYSCALL_64_after_hwframe+0x63/0xcd Return error when __root_device_register() fails.

EPSS 0.02% · 3.9th percentile

Risk Scores

EPSS Score
0.02%
3.9th percentile

Affected Products

VendorProductVersions
linuxlinux_kernel4.9, 4.9, 4.9
LinuxLinux658bcdae9c6755806e66b33e29d56b33a3ff421a, 658bcdae9c6755806e66b33e29d56b33a3ff421a, 658bcdae9c6755806e66b33e29d56b33a3ff421a

Timeline

  • Oct 7, 2025 CVE Published
  • Oct 8, 2025 EPSS Score
  • Oct 14, 2025 EPSS Score
  • Oct 21, 2025 EPSS Score
  • Oct 27, 2025 EPSS Score
  • Nov 3, 2025 EPSS Score
  • Nov 9, 2025 EPSS Score
  • Nov 15, 2025 EPSS Score
  • Nov 22, 2025 EPSS Score
  • Nov 28, 2025 EPSS Score
  • Dec 4, 2025 EPSS Score
  • Dec 11, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›