VYPR
Unrated severityNVD Advisory· Published Sep 16, 2025· Updated Jan 14, 2026

mmc: rtsx_usb_sdmmc: fix return value check of mmc_add_host()

CVE-2022-50347

Description

In the Linux kernel, the following vulnerability has been resolved:

mmc: rtsx_usb_sdmmc: fix return value check of mmc_add_host()

mmc_add_host() may return error, if we ignore its return value, the memory that allocated in mmc_alloc_host() will be leaked and it will lead a kernel crash because of deleting not added device in the remove path.

So fix this by checking the return value and calling mmc_free_host() in the error path, besides, led_classdev_unregister() and pm_runtime_disable() also need be called.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

93

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.