DEBIAN-CVE-2022-50669

DEBIAN-CVE-2022-50669 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: misc: ocxl: fix possible name leak in ocxl_file_register_afu() If device_register() returns error in ocxl_file_register_afu(), the name allocated by dev_set_name() need be freed. As comment of device_register() says, it should use put_device() to give up the reference in the error path. So fix this by calling put_device(), then the name can be freed in kobject_cleanup(), and info is freed in info_release().

Affected Products

Vendor	Product	Versions
Debian:11	linux	*, 5.10.92-1, 5.10.92-2
Debian:13	linux	0, 0, 0
Debian:14	linux	0, 0, 0
Debian:12	linux	0, 0, 0

Timeline

Dec 9, 2025 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2022-50669 advisory

Open in Interactive Console →