{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2022-50854","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-12-30T12:06:07.134Z","datePublished":"2025-12-30T12:15:29.792Z","dateUpdated":"2026-05-11T19:26:24.301Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T19:26:24.301Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: virtual_ncidev: Fix memory leak in virtual_nci_send()\n\nskb should be free in virtual_nci_send(), otherwise kmemleak will report\nmemleak.\n\nSteps for reproduction (simulated in qemu):\n\tcd tools/testing/selftests/nci\n\tmake\n\t./nci_dev\n\nBUG: memory leak\nunreferenced object 0xffff888107588000 (size 208):\n comm \"nci_dev\", pid 206, jiffies 4294945376 (age 368.248s)\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n backtrace:\n [<000000008d94c8fd>] __alloc_skb+0x1da/0x290\n [<00000000278bc7f8>] nci_send_cmd+0xa3/0x350\n [<0000000081256a22>] nci_reset_req+0x6b/0xa0\n [<000000009e721112>] __nci_request+0x90/0x250\n [<000000005d556e59>] nci_dev_up+0x217/0x5b0\n [<00000000e618ce62>] nfc_dev_up+0x114/0x220\n [<00000000981e226b>] nfc_genl_dev_up+0x94/0xe0\n [<000000009bb03517>] genl_family_rcv_msg_doit.isra.14+0x228/0x2d0\n [<00000000b7f8c101>] genl_rcv_msg+0x35c/0x640\n [<00000000c94075ff>] netlink_rcv_skb+0x11e/0x350\n [<00000000440cfb1e>] genl_rcv+0x24/0x40\n [<0000000062593b40>] netlink_unicast+0x43f/0x640\n [<000000001d0b13cc>] netlink_sendmsg+0x73a/0xbf0\n [<000000003272487f>] __sys_sendto+0x324/0x370\n [<00000000ef9f1747>] __x64_sys_sendto+0xdd/0x1b0\n [<000000001e437841>] do_syscall_64+0x3f/0x90"}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/nfc/virtual_ncidev.c"],"versions":[{"version":"e624e6c3e777fb3dfed036b9da4d433aee3608a5","lessThan":"88e879c9f59511174ef0ab1a3c9c83e2dbf8a213","status":"affected","versionType":"git"},{"version":"e624e6c3e777fb3dfed036b9da4d433aee3608a5","lessThan":"2c46a9a5f0b1c7341aa67667801079f3ff571678","status":"affected","versionType":"git"},{"version":"e624e6c3e777fb3dfed036b9da4d433aee3608a5","lessThan":"e840d8f4a1b323973052a1af5ad4edafcde8ae3d","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/nfc/virtual_ncidev.c"],"versions":[{"version":"5.12","status":"affected"},{"version":"0","lessThan":"5.12","status":"unaffected","versionType":"semver"},{"version":"5.15.77","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.0.7","lessThanOrEqual":"6.0.*","status":"unaffected","versionType":"semver"},{"version":"6.1","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.12","versionEndExcluding":"5.15.77"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.12","versionEndExcluding":"6.0.7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.12","versionEndExcluding":"6.1"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/88e879c9f59511174ef0ab1a3c9c83e2dbf8a213"},{"url":"https://git.kernel.org/stable/c/2c46a9a5f0b1c7341aa67667801079f3ff571678"},{"url":"https://git.kernel.org/stable/c/e840d8f4a1b323973052a1af5ad4edafcde8ae3d"}],"title":"nfc: virtual_ncidev: Fix memory leak in virtual_nci_send()","x_generator":{"engine":"bippy-1.2.0"}}}}