CVE-2022-50512

low-risk

Published 2025-10-07

In the Linux kernel, the following vulnerability has been resolved: ext4: fix potential memory leak in ext4_fc_record_regions() As krealloc may return NULL, in this case 'state->fc_regions' may not be freed by krealloc, but 'state->fc_regions' already set NULL. Then will lead to 'state->fc_regions' memory leak.

Do I need to act?

0.01% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (1)

Linux Kernel

Affected Vendors

Linux

References (5)

Patch https://git.kernel.org/stable/c/2cfb769d60a2a57eb3566765428b6131cd16dcfe

Patch https://git.kernel.org/stable/c/417b0455a0b6d0f60a2930592731d1f8340e24be

Patch https://git.kernel.org/stable/c/518566e71ad86b7c2f1bf6d9caee9588bb7ac158

Patch https://git.kernel.org/stable/c/7069d105c1f15c442b68af43f7fde784f3126739

Patch https://git.kernel.org/stable/c/a4058b869e6c5e517c79e30532a350d0f3115c3e

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal