{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2022-50244","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-09-15T13:58:00.971Z","datePublished":"2025-09-15T14:02:01.364Z","dateUpdated":"2026-05-11T19:15:33.665Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T19:15:33.665Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncxl: fix possible null-ptr-deref in cxl_pci_init_afu|adapter()\n\nIf device_register() fails in cxl_pci_afu|adapter(), the device\nis not added, device_unregister() can not be called in the error\npath, otherwise it will cause a null-ptr-deref because of removing\nnot added device.\n\nAs comment of device_register() says, it should use put_device() to give\nup the reference in the error path. So split device_unregister() into\ndevice_del() and put_device(), then goes to put dev when register fails."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/misc/cxl/pci.c"],"versions":[{"version":"f204e0b8cedd7da1dfcfd05ed6b7692737e24029","lessThan":"82e68432668ae75b4c814d160f6987ecb0681273","status":"affected","versionType":"git"},{"version":"f204e0b8cedd7da1dfcfd05ed6b7692737e24029","lessThan":"82e5481428faf11c79b9c094dd24a1849bbf64ac","status":"affected","versionType":"git"},{"version":"f204e0b8cedd7da1dfcfd05ed6b7692737e24029","lessThan":"c4b2e35df919d99bbbed033c2fa0b607f9f463b5","status":"affected","versionType":"git"},{"version":"f204e0b8cedd7da1dfcfd05ed6b7692737e24029","lessThan":"361412dae1690d4b5df6f92fc943cdc773c95cbc","status":"affected","versionType":"git"},{"version":"f204e0b8cedd7da1dfcfd05ed6b7692737e24029","lessThan":"0f63c0ddc2ea20d783d29243f4dbe0f9e95dfdec","status":"affected","versionType":"git"},{"version":"f204e0b8cedd7da1dfcfd05ed6b7692737e24029","lessThan":"22511eefa61db26e12c97dd7ada3071dbdfcb004","status":"affected","versionType":"git"},{"version":"f204e0b8cedd7da1dfcfd05ed6b7692737e24029","lessThan":"139abd4c626a6f7ce02789ed5f73aa2256e0542b","status":"affected","versionType":"git"},{"version":"f204e0b8cedd7da1dfcfd05ed6b7692737e24029","lessThan":"2f5fd31b2f24b9b8a80ab566fd8c4e1e94cb4339","status":"affected","versionType":"git"},{"version":"f204e0b8cedd7da1dfcfd05ed6b7692737e24029","lessThan":"02cd3032b154fa02fdf90e7467abaeed889330b2","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/misc/cxl/pci.c"],"versions":[{"version":"3.18","status":"affected"},{"version":"0","lessThan":"3.18","status":"unaffected","versionType":"semver"},{"version":"4.9.337","lessThanOrEqual":"4.9.*","status":"unaffected","versionType":"semver"},{"version":"4.14.303","lessThanOrEqual":"4.14.*","status":"unaffected","versionType":"semver"},{"version":"4.19.270","lessThanOrEqual":"4.19.*","status":"unaffected","versionType":"semver"},{"version":"5.4.229","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.163","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.86","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.0.16","lessThanOrEqual":"6.0.*","status":"unaffected","versionType":"semver"},{"version":"6.1.2","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.2","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.18","versionEndExcluding":"4.9.337"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.18","versionEndExcluding":"4.14.303"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.18","versionEndExcluding":"4.19.270"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.18","versionEndExcluding":"5.4.229"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.18","versionEndExcluding":"5.10.163"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.18","versionEndExcluding":"5.15.86"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.18","versionEndExcluding":"6.0.16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.18","versionEndExcluding":"6.1.2"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.18","versionEndExcluding":"6.2"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/82e68432668ae75b4c814d160f6987ecb0681273"},{"url":"https://git.kernel.org/stable/c/82e5481428faf11c79b9c094dd24a1849bbf64ac"},{"url":"https://git.kernel.org/stable/c/c4b2e35df919d99bbbed033c2fa0b607f9f463b5"},{"url":"https://git.kernel.org/stable/c/361412dae1690d4b5df6f92fc943cdc773c95cbc"},{"url":"https://git.kernel.org/stable/c/0f63c0ddc2ea20d783d29243f4dbe0f9e95dfdec"},{"url":"https://git.kernel.org/stable/c/22511eefa61db26e12c97dd7ada3071dbdfcb004"},{"url":"https://git.kernel.org/stable/c/139abd4c626a6f7ce02789ed5f73aa2256e0542b"},{"url":"https://git.kernel.org/stable/c/2f5fd31b2f24b9b8a80ab566fd8c4e1e94cb4339"},{"url":"https://git.kernel.org/stable/c/02cd3032b154fa02fdf90e7467abaeed889330b2"}],"title":"cxl: fix possible null-ptr-deref in cxl_pci_init_afu|adapter()","x_generator":{"engine":"bippy-1.2.0"}}}}