CVE-2022-50474— macintosh: fix possible memory leak in macio_add_one_device()

AI Predicted 3.3 Difficulty: Moderate EPSS 0.02% · P4 Updated May 13, 2026

Affected Version Matrix 20

Vendor	Product	Version Range	Status
Linux	Linux	`1fa5ae857bb14f6046205171d98506d8112dd74e< 3a866ff6fc2232c8e393cdb55ffb8ce947349e03`	affected
		`1fa5ae857bb14f6046205171d98506d8112dd74e< aa9054267366ff0a382d403d17728e21951ddbb9`	affected
		`1fa5ae857bb14f6046205171d98506d8112dd74e< 35858b87a943917fa30172aa4bf01ce7adbcb42c`	affected
		`1fa5ae857bb14f6046205171d98506d8112dd74e< b29a2f1dd33ae9b94821ab2f4d398b9081786748`	affected
		`1fa5ae857bb14f6046205171d98506d8112dd74e< 2ac0a7059b7bcbed35bfffa34a82c9a9e99638ef`	affected
		`1fa5ae857bb14f6046205171d98506d8112dd74e< 19ded60b40e86b0903c8d5bd0161437ed5107a8b`	affected
		`1fa5ae857bb14f6046205171d98506d8112dd74e< ca765257feb89dacf604ced9cd233db5f865dee0`	affected
		`1fa5ae857bb14f6046205171d98506d8112dd74e< 76837e7f6b30da72ad59f56291e22804a219e015`	affected
… +12 more rows

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-50474

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

macintosh: fix possible memory leak in macio_add_one_device()

Source: NVD (National Vulnerability Database)

Vulnerability Description

In the Linux kernel, the following vulnerability has been resolved: macintosh: fix possible memory leak in macio_add_one_device() Afer commit 1fa5ae857bb1 ("driver core: get rid of struct device's bus_id string array"), the name of device is allocated dynamically. It needs to be freed when of_device_register() fails. Call put_device() to give up the reference that's taken in device_initialize(), so that it can be freed in kobject_cleanup() when the refcount hits 0. macio device is freed in macio_release_dev(), so the kfree() can be removed.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Linux kernel 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于macio_add_one_device函数在of_device_register失败时未释放动态分配的设备名称，可能导致内存泄漏。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Linux	Linux	1fa5ae857bb14f6046205171d98506d8112dd74e ~ 3a866ff6fc2232c8e393cdb55ffb8ce947349e03	-
Linux	Linux	2.6.30	-

II. Public POCs for CVE-2022-50474

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2022-50474

请登录查看更多情报信息。

Patches & Fixes for CVE-2022-50474 (9)

https://nvd.nist.gov/vuln/detail/CVE-2022-50474

Same Patch Batch · Linux · 2025-10-04 · 144 CVEs total

CVE-2025-39946	9.8 CRITICAL	tls: make sure to abort the stream if headers are bogus
CVE-2022-50491		coresight: cti: Fix hang in cti_disable_hw()
CVE-2023-53581		net/mlx5e: Check for NOT_READY flag state after locking
CVE-2023-53580		USB: Gadget: core: Help prevent panic during UVC unconfigure
CVE-2022-50507		fs/ntfs3: Validate data run offset
CVE-2022-50508		wifi: mt76: mt76x0: fix oob access in mt76x0_phy_get_target_power
CVE-2022-50506		drbd: only clone bio if we have a backing device
CVE-2022-50504		powerpc/rtas: avoid scheduling in rtas_os_term()
CVE-2022-50505		iommu/amd: Fix pci device refcount leak in ppr_notifier()
CVE-2022-50503		mtd: lpddr2_nvm: Fix possible null-ptr-deref
CVE-2022-50501		media: coda: Add check for dcoda_iram_alloc
CVE-2022-50500		netdevsim: fix memory leak in nsim_drv_probe() when nsim_dev_resources_register() failed
CVE-2022-50499		media: dvb-core: Fix double free in dvb_register_device()
CVE-2022-50497		binfmt_misc: fix shift-out-of-bounds in check_special_flags
CVE-2022-50498		eth: alx: take rtnl_lock on resume
CVE-2022-50496		dm cache: Fix UAF in destroy()
CVE-2022-50494		thermal: intel_powerclamp: Use get_cpu() instead of smp_processor_id() to avoid crash
CVE-2022-50493		scsi: qla2xxx: Fix crash when I/O abort times out
CVE-2022-50492		drm/msm: fix use-after-free on probe deferral
CVE-2023-53572		clk: imx: scu: use _safe list iterator to avoid a use after free

Showing top 20 of 144 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Linux

Same vendor: Linux

V. Comments for CVE-2022-50474

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2022-50474— macintosh: fix possible memory leak in macio_add_one_device()

Affected Version Matrix 20

I. Basic Information for CVE-2022-50474

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2022-50474

III. Intelligence Information for CVE-2022-50474

Patches & Fixes for CVE-2022-50474 (9)

Same Patch Batch · Linux · 2025-10-04 · 144 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2022-50474

Leave a comment