CVE-2022-50463: 
Linux Debian vulnerability analysis and mitigation

CVE-2022-50463 is a vulnerability in the Linux kernel affecting the PowerPC 52xx architecture. The issue was discovered and reported on October 1, 2025, involving a resource leak in the error handling path of the mpc52xx_lpbfifo_probe() function (NVD, Ubuntu).

The vulnerability stems from an unbalanced resource management where a request_irq() call is not properly matched with a corresponding free_irq() in the error handling path of mpc52xx_lpbfifo_probe(). This oversight creates a resource leak condition that needs to be addressed by adding the missing free_irq() call, similar to what is already implemented in the remove function (NVD).

The resource leak in the PowerPC 52xx architecture's error handling path could lead to system resource exhaustion over time. While the immediate impact is limited to PowerPC 52xx systems, the cumulative effect of the resource leak could potentially affect system stability (Ubuntu).

The vulnerability has been addressed through patches in various Linux distributions. Ubuntu has implemented fixes across multiple kernel versions, including linux-hwe-5.15 (5.15.0-69.76~20.04.1), linux-kvm (5.4.0-1087.93), and several other kernel variants. Users are advised to update their systems to the patched versions (Ubuntu).