CVE-2022-50875
Published Dec 30, 2025
Modified Apr 15, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: of: overlay: fix null pointer dereferencing in find_dup_cset_node_entry() and find_dup_cset_prop() When kmalloc() fail to allocate memory in kasprintf(), fn_1 or fn_2 will be NULL, and strcmp() will cause null pointer dereference.
Is your site exposed to CVE-2022-50875?
Run a free security scan — no signup, results in seconds.
References
Other References
https://git.kernel.org/stable/c/2b4af99b44861646013821019dd13a4ac48c0219
https://git.kernel.org/stable/c/71d88c7453ec3d2ceff98e18ce4d6354abd3b5b6
https://git.kernel.org/stable/c/9ec5781879b4535ad59b5354b385825378e45618
https://git.kernel.org/stable/c/ab5bb7bbacf531de8e32912cc2e21f906113cee8
https://git.kernel.org/stable/c/ce1b3a41e7964cb8dd56a702a95dd90ad27f51cd
https://git.kernel.org/stable/c/ee9d7a0e754568180a2f8ebc4aad226278a9116f
Frequently Asked Questions
What is CVE-2022-50875? +
In the Linux kernel, the following vulnerability has been resolved:
of: overlay: fix null pointer dereferencing in find_dup_cset_node_entry() and find_dup_cset_prop()
When kmalloc() fail to allocate memory in kasprintf(), fn_1 or fn_2 will
be NULL, and strcmp() will cause null pointer dereference.
How do I check if I'm vulnerable to CVE-2022-50875? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.