{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2022-50831", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "REJECTED", "assignerShortName": "Linux", "dateReserved": "2025-12-30T12:06:07.132Z", "datePublished": "2025-12-30T12:10:52.754Z", "dateUpdated": "2025-12-30T13:52:29.775Z", "dateRejected": "2025-12-30T13:52:29.775Z"}, "containers": {"cna": {"rejectedReasons": [{"lang": "en", "value": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority."}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-12-30T13:52:29.775Z"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: fix MBSSID parsing use-after-free\n\ncommit ff05d4b45dd89b922578dac497dcabf57cf771c6\n\nWhen we parse a multi-BSSID element, we might point some\nelement pointers into the allocated nontransmitted_profile.\nHowever, we free this before returning, causing UAF when the\nrelevant pointers in the parsed elements are accessed.\n\nFix this by not allocating the scratch buffer separately but\nas part of the returned structure instead, that way, there\nare no lifetime issues with it.\n\nThe scratch buffer introduction as part of the returned data\nhere is taken from MLO feature work done by Ilan.\n\nThis fixes CVE-2022-42719."}], "id": "CVE-2022-50831", "lastModified": "2025-12-30T13:15:57.597", "metrics": {}, "published": "2025-12-30T13:15:57.597", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/de124365a7d2deed22cf706583930f28d537ff0f"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Received"}

{}