5.5

CVE-2022-49253

media: usb: go7007: s2250-board: fix leak in probe()

In the Linux kernel, the following vulnerability has been resolved:

media: usb: go7007: s2250-board: fix leak in probe()

Call i2c_unregister_device(audio) on this error path.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 3.10 < 4.9.311
LinuxLinux Kernel Version >= 4.10 < 4.14.276
LinuxLinux Kernel Version >= 4.15 < 4.19.238
LinuxLinux Kernel Version >= 4.20 < 5.4.189
LinuxLinux Kernel Version >= 5.5 < 5.10.110
LinuxLinux Kernel Version >= 5.11 < 5.15.33
LinuxLinux Kernel Version >= 5.16 < 5.16.19
LinuxLinux Kernel Version >= 5.17 < 5.17.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.26% 0.172
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/14cd5a8e61c654828a1f1056d56f0b0a524d2c69
Patch
https://git.kernel.org/stable/c/44973633b0064c46083833b55dd0a45e6235f8ca
Patch
https://git.kernel.org/stable/c/67e4550ecd6164bfbdff54c169e5bbf9ccfaf14d
Patch
https://git.kernel.org/stable/c/895364fa97e60749855f789bc4568883fc7a8b39
Patch
https://git.kernel.org/stable/c/948ad5e5624487079c24cb5c81c74ddd02832440
Patch
https://git.kernel.org/stable/c/a97130cd5b0c00eec169b10a16d922b9ea67324a
Patch
https://git.kernel.org/stable/c/b5470f3efa530b10296257bb578ce4b1769e9a04
Patch
https://git.kernel.org/stable/c/b7dd177225355da55f8d80d8e568928e0eec3608
Patch
https://git.kernel.org/stable/c/bbdd0e15738336e6b1208304ae98525117877bbd
Patch