5.5

CVE-2022-50134

RDMA/hfi1: fix potential memory leak in setup_base_ctxt()

In the Linux kernel, the following vulnerability has been resolved:

RDMA/hfi1: fix potential memory leak in setup_base_ctxt()

setup_base_ctxt() allocates a memory chunk for uctxt->groups with
hfi1_alloc_ctxt_rcv_groups(). When init_user_ctxt() fails, uctxt->groups
is not released, which will lead to a memory leak.

We should release the uctxt->groups with hfi1_free_ctxt_rcv_groups()
when init_user_ctxt() fails.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.14 < 4.14.291
LinuxLinux Kernel Version >= 4.15 < 4.19.256
LinuxLinux Kernel Version >= 4.20 < 5.4.211
LinuxLinux Kernel Version >= 5.5 < 5.10.137
LinuxLinux Kernel Version >= 5.11 < 5.15.61
LinuxLinux Kernel Version >= 5.16 < 5.18.18
LinuxLinux Kernel Version >= 5.19 < 5.19.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.21% 0.11
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/fc4de8009fd6c2ca51986c6757efa964040e7d02
Patch
https://git.kernel.org/stable/c/90ef48a718f88935d4af53d7dadd1ceafe103ce6
Patch
https://git.kernel.org/stable/c/2f90813f1c21c3d780585390af961bd17c8515ae
Patch
https://git.kernel.org/stable/c/a85c7dd1edadcdeca24e603a6618153a3bcc81ca
Patch
https://git.kernel.org/stable/c/e25b828553aecb3185a8d8d0c4f9b4e133fb5db6
Patch
https://git.kernel.org/stable/c/1750be1e9f18787cf717c24dbc5fa029fc372a22
Patch
https://git.kernel.org/stable/c/a9055dfe437efae77e28e57205437c878a03ccb7
Patch
https://git.kernel.org/stable/c/aa2a1df3a2c85f855af7d54466ac10bd48645d63
Patch