Cloud Vulnerability DB
A community-led vulnerabilities database
Vulnerability DatabaseCVE-2022-50547
CVE-2022-50547:
Linux Debian vulnerability analysis and mitigation
Overview
CVE-2022-50547 is a vulnerability in the Linux kernel affecting the media subsystem, specifically the solo6x10 driver. The vulnerability was published on October 7, 2025, and involves a potential memory leak in the solosysfsinit() function (NVD).
Technical details
The vulnerability occurs when deviceregister() returns an error in solosysfsinit(), where the name allocated by devsetname() needs to be freed. According to the documentation, putdevice() should be used to give up the reference in the error path, allowing the name to be freed in kobject_cleanup() (RedHat).
Impact
The vulnerability results in a memory leak condition in the Linux kernel's solo6x10 driver, which could potentially lead to system resource exhaustion over time (Ubuntu).
Mitigation and workarounds
The issue has been fixed in various Linux distributions. Ubuntu has released patches for multiple versions including fixes for linux-hwe (5.15.0-69.76~20.04.1), linux-azure (5.15.0-1035.42), and other kernel variants. Red Hat has evaluated the vulnerability and marked several versions of Red Hat Enterprise Linux as not affected (Ubuntu, RedHat).
Additional resources
Source: This report was generated using AI
Related Linux Debian vulnerabilities:
Free Vulnerability Assessment
Benchmark your Cloud Security Posture
Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.
Additional Wiz resources
Get a personalized demo
Ready to see Wiz in action?
"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management