Description

In the Linux kernel, the following vulnerability has been resolved: platform/chrome: cros_ec_typec: zero out stale pointers `cros_typec_get_switch_handles` allocates four pointers when obtaining type-c switch handles. These pointers are all freed if failing to obtain any of them; therefore, pointers in `port` become stale. The stale pointers eventually cause use-after-free or double free in later code paths. Zeroing out all pointer fields after freeing to eliminate these stale pointers.

INFO

Published Date :

2025-12-09T00:00:16.490Z

Last Modified :

2025-12-09T00:00:16.490Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-50642 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-50642.

URL Resource
https://git.kernel.org/stable/c/0ceadb5a3e45f1b81cf54bd496b40a5e50b6bd40 cve-icon cve-icon
https://git.kernel.org/stable/c/6613f36a2fa5c69e528bccba8b3d831f759dad2f cve-icon cve-icon
https://git.kernel.org/stable/c/9a8aadcf0b459c1257b9477fd6402e1d5952ae07 cve-icon cve-icon
https://git.kernel.org/stable/c/b610758bb3e0674644c1255cdafc2f46b7e05ff9 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025120936-CVE-2022-50642-6975@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-50642 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-50642 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact