CVE-2022-50677

Advisory lineage Upstream: 0 Downstream: 10

Downstream

DEBIAN-CVE-2022-50677 RHSA-2023:4517 RHSA-2023:6583 RHSA-2023:7077 SUSE-SU-2026:0263-1 SUSE-SU-2026:0316-1

Deferred

Published: 09 Dec 2025, 01:29

Last modified:23 May 2026, 15:24

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

0.04% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

09 Dec 2025, 01:29

Published

Vulnerability first disclosed

23 May 2026, 15:24

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: ipmi: fix use after free in _ipmi_destroy_user() The intf_free() function frees the "intf" pointer so we cannot dereference it again on the next line.

EPSS Trends

Current EPSS score: 0.04%• Percentile: 12%

Affected Systems

linux•linux
≥ f9d405a4bd6090ffbf3bba5e2da6b44c0e013cb3, < 35ad87bfe330f7ef6a19f772223c63296d643172 | ≥ b642ced2cad496c32ae1f62b85fc395391190820, < d23006f2a56e11a3103de0ca8b843bf7fd7d76fc | ≥ cbb79863fc3175ed5ac506465948b02a893a8235, < f29d127b372e1b7662397d92341d9f7de198ff99 | ≥ cbb79863fc3175ed5ac506465948b02a893a8235, < bfce073089cb81482521c65061835aaa6d1a6cc0 | ≥ cbb79863fc3175ed5ac506465948b02a893a8235, < f7fde441198a9ecb130c3ccec91ee2131d6998ee | ≥ cbb79863fc3175ed5ac506465948b02a893a8235, < 1fc9b20a7688000fcf4d7fbaa58e415a3cdda961 | ≥ cbb79863fc3175ed5ac506465948b02a893a8235, < a92ce570c81dc0feaeb12a429b4bc65686d17967 | ≥ 4.19.92, < 4.19.270 | ≥ 5.4.7, < 5.4.229 | 5.5