VYPR
← All advisories
Unrated severityNVD Advisory· Published Dec 24, 2025· Updated Apr 15, 2026

CVE-2022-50732

CVE-2022-50732

Description

In the Linux kernel, the following vulnerability has been resolved:

staging: rtl8192u: Fix use after free in ieee80211_rx()

We cannot dereference the "skb" pointer after calling ieee80211_monitor_rx(), because it is a use after free.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Use-after-free in Linux kernel's rtl8192u driver when handling received packets, leading to potential memory corruption.

Vulnerability

CVE-2022-50732 is a use-after-free vulnerability in the Linux kernel's staging rtl8192u driver. In the function ieee80211_rx(), the code dereferences the skb pointer after calling ieee80211_monitor_rx(), which may have freed the skb, leading to a use-after-free condition [1][2].

Exploitation

The vulnerability can be triggered by an attacker who can send specially crafted network packets to a system using the rtl8192u driver. The driver processes received packets in ieee80211_rx() and, under certain conditions, passes the skb to ieee80211_monitor_rx(), which may free it. Subsequent use of the freed pointer allows an attacker to potentially corrupt memory or execute arbitrary code [3][4].

Impact

Successful exploitation could lead to memory corruption, system crashes, or privilege escalation. The vulnerability is in the staging tree, which may not be widely used, but affected systems should be patched.

Mitigation

The issue has been fixed in the Linux kernel through commits [1][2][3][4]. Users should update to a kernel version containing the fix, or apply the relevant patches.

References
  1. Making sure you're not a bot!
  2. Making sure you're not a bot!
  3. Making sure you're not a bot!
  4. Making sure you're not a bot!

AI Insight generated on May 19, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

1

Patches

9
288ada16a93a
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
commit
daa8045a9913
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
commit
b0aaec894a90
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
commit
9c03db0ec84b
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
commit
fdc62d31d50e
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
commit
a0df8d44b555
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
commit
de174163c0d3
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
commit
73df1172bbcc
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
commit
bcc5e2dcf090
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
commit

Vulnerability mechanics

Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

9

News mentions

0

No linked articles in our index yet.