SB2025121034 - Memory leak in Linux kernel intel ipw2x00 driver
Published: December 10, 2025 Updated: December 12, 2025
Security Bulletin ID
SB2025121034
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Memory leak (CVE-ID: CVE-2022-50660)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the ipw_wdev_init() function in drivers/net/wireless/intel/ipw2x00/ipw2200.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/112c1af02b8f535baf42ef9d807aea963705ef15
- https://git.kernel.org/stable/c/1f590fb3d14e5db3a9e06ee141b1685c429278ce
- https://git.kernel.org/stable/c/62ec7e8bf42f1542f966dda687c654aae81718c8
- https://git.kernel.org/stable/c/75d20ba9506eb90d92e660e04dd887ff1495fcc3
- https://git.kernel.org/stable/c/8a2eb9d9d0c1535bc8e22840193bff4cdcac878b
- https://git.kernel.org/stable/c/9424ea9d557ef41d86eb40b6349ae991c3dcff89
- https://git.kernel.org/stable/c/9fe21dc626117fb44a8eb393713a86a620128ce3
- https://git.kernel.org/stable/c/fb3517b92a45c8004ac26250ae041a24eb23fef1
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.276