#VU120321 Memory leak in Linux kernel - CVE-2022-50760
Published: December 26, 2025 / Updated: December 31, 2025
Vulnerability identifier: #VU120321
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2022-50760
CWE-ID: CWE-401
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Linux kernel
Linux kernel
Software vendor:
Linux Foundation
Linux Foundation
Description
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the amdgpu_atrm_get_bios() function in drivers/gpu/drm/amd/amdgpu/amdgpu_bios.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's repository.
External links
- https://git.kernel.org/stable/c/3360125d721c91d697c71201f18f042ff743e936
- https://git.kernel.org/stable/c/6611feef35c0c8c4d297b28a7fc6ab3a2c47eca7
- https://git.kernel.org/stable/c/7c1ddf7c664b5bc91f14b1bdeaa45520ef1760e4
- https://git.kernel.org/stable/c/8f2d2badf8ca5e7e7c30d88840b695c8af7286f3
- https://git.kernel.org/stable/c/981024abf5fe605c94d4f906f65d1b3408d628be
- https://git.kernel.org/stable/c/9d4057d0452243917e12eb19f1599c96f2f05b14
- https://git.kernel.org/stable/c/a8b54ad7106c0604c4adc4933138b3557739bce0
- https://git.kernel.org/stable/c/ca54639c7752edf1304d92ff4d0c049d4efc9ba0
- https://git.kernel.org/stable/c/da7c78ea9e62bb65273d3ff19a3866ec205bfe18
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.303