CVE-2022-50115 Information

Jun 19, 2025 cve

Description

In the Linux kernel the following vulnerability has been resolved:

ASoC: SOF: ipc3-topology: Prevent double freeing of ipc_control_data via load_bytes

We have sanity checks for byte controls and if any of the fail the locally allocated scontrol->ipc_control_data is freed up but not set to NULL.

On a rollback path of the error the higher level code will also try to free the scontrol->ipc_control_data which will eventually going to lead to memory corruption as double freeing memory is not a good thing.

Reference

https://git.kernel.org/stable/c/8463986b54295e6b65ddf2b7c65627d01ce7643b https://git.kernel.org/stable/c/c2eddfcafcffaf1b9245ea0dde9143bbfb47d5d1 https://git.kernel.org/stable/c/d5bd47f3ca124058a8e87eae4508afeda2132611

CNNVD-202506-2404 (Published: 2025-06-18)

Share on:

CVE-2022-50115 Information

Description

Reference

Related CNNVD