5.5

CVE-2022-49331

nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling

In the Linux kernel, the following vulnerability has been resolved:

nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling

Error paths do not free previously allocated memory. Add devm_kfree() to
those failure paths.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.0 < 4.9.318
LinuxLinux Kernel Version >= 4.10 < 4.14.283
LinuxLinux Kernel Version >= 4.15 < 4.19.247
LinuxLinux Kernel Version >= 4.20 < 5.4.198
LinuxLinux Kernel Version >= 5.5 < 5.10.122
LinuxLinux Kernel Version >= 5.11 < 5.15.47
LinuxLinux Kernel Version >= 5.16 < 5.17.15
LinuxLinux Kernel Version >= 5.18 < 5.18.4
LinuxLinux Kernel Version5.19 Updaterc1
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.26% 0.168
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/3eca2c42daa4659965db6817479027cbc6df7899
Patch
https://git.kernel.org/stable/c/54423649bc0ed464b75807a7cf2857a5871f738f
Patch
https://git.kernel.org/stable/c/55904086041ba4ee4070187b36590f8f8d6df4cd
Patch
https://git.kernel.org/stable/c/593773088d615a46a42c97e01a0550d192bb7f74
Patch
https://git.kernel.org/stable/c/6fce324b530dd74750ad870699e33eeed1029ded
Patch
https://git.kernel.org/stable/c/996419e0594abb311fb958553809f24f38e7abbe
Patch
https://git.kernel.org/stable/c/d221ce54ce331c1a23be71eebf57f6a088632383
Patch
https://git.kernel.org/stable/c/db836b97464d44340b568e041fd24602858713f7
Patch
https://git.kernel.org/stable/c/f444ecd3f57f4ba5090fe8b6756933e37de4226e
Patch