CVE-2022-50513 PUBLISHED

staging: rtl8723bs: fix a potential memory leak in rtw_init_cmd_priv()

Assigner: Linux
Reserved: 07.10.2025 Published: 07.10.2025 Updated: 07.10.2025

In the Linux kernel, the following vulnerability has been resolved:

staging: rtl8723bs: fix a potential memory leak in rtw_init_cmd_priv()

In rtw_init_cmd_priv(), if pcmdpriv->rsp_allocated_buf is allocated in failure, then pcmdpriv->cmd_allocated_buf will be not properly released. Besides, considering there are only two error paths and the first one can directly return, so we do not need implicitly jump to the exit tag to execute the error handler.

So this patch added kfree(pcmdpriv->cmd_allocated_buf); on the error path to release the resource and simplified the return logic of rtw_init_cmd_priv(). As there is no proper device to test with, no runtime testing was performed.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to e5d8f05edb36fc4ab15beec62cb6ab62f5a60fe2 (excl.)
  • affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to e6cc39db24a63f68314473621020ed8cad7be423 (excl.)
  • affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to 39bef9c6a91bbb790d04c1347cfeae584541fb6a (excl.)
  • affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to a5be64ff6d21f7805a91e6d81f53fc19cd9f0fae (excl.)
  • affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to 8db6ca84eee0ac258706f3fca54f7c021cb159ef (excl.)
  • affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to 708056fba733a73d926772ea4ce9a42d240345da (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • unaffected from 5.4.220 to 5.4.* (incl.)
  • unaffected from 5.10.150 to 5.10.* (incl.)
  • unaffected from 5.15.75 to 5.15.* (incl.)
  • unaffected from 5.19.17 to 5.19.* (incl.)
  • unaffected from 6.0.3 to 6.0.* (incl.)
  • unaffected from 6.1 to * (incl.)

References