CVE-2022-50247: 
Linux Kernel vulnerability analysis and mitigation

CVE-2022-50247 is a vulnerability in the Linux kernel's USB subsystem, specifically in the xhci-mtk driver. The issue was discovered in 2022 and involves a memory leak that occurs when failing to set wakeup IRQ. The vulnerability stems from incorrectly handling the shared_hcd pointer before decreasing the usage count via usb_put_hcd(), which results in the shared host controller device (HCD) not being properly released (Ubuntu Security).

The vulnerability exists in the xhci-mtk (MediaTek xHCI) USB host controller driver. The technical issue involves improper memory management where the shared_hcd pointer is set to NULL before decreasing the usage count through usb_put_hcd(). This sequence of operations prevents the proper release of the shared host controller device, resulting in a memory leak (NVD).

The primary impact of this vulnerability is a memory leak in the system. While this may not lead to immediate system compromise, continued memory leaks can result in degraded system performance and potential resource exhaustion over time (Ubuntu Security).

The vulnerability has been fixed in various Linux kernel versions. Ubuntu has released patches for multiple versions including Ubuntu 22.04 LTS (Jammy) with linux version 5.15.0-69.76, Ubuntu 20.04 LTS (Focal) with linux-hwe-5.15 version 5.15.0-69.76~20.04.1, and several other kernel variants (Ubuntu Security).