5.5

CVE-2022-50175

media: tw686x: Fix memory leak in tw686x_video_init

In the Linux kernel, the following vulnerability has been resolved:

media: tw686x: Fix memory leak in tw686x_video_init

video_device_alloc() allocates memory for vdev,
when video_register_device() fails, it doesn't release the memory and
leads to memory leak, call video_device_release() to fix this.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.7 < 5.10.137
LinuxLinux Kernel Version >= 5.11 < 5.15.61
LinuxLinux Kernel Version >= 5.16 < 5.18.18
LinuxLinux Kernel Version >= 5.19 < 5.19.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.2% 0.102
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/611f86965df013d6021e6cd0d155b1734ad2cf21
Patch
https://git.kernel.org/stable/c/0597bcf774896a002edcc7934a9cdbb932b66702
Patch
https://git.kernel.org/stable/c/c142a7531b90c6b0f946c82d3f504b3f36a207df
Patch
https://git.kernel.org/stable/c/8b412db51db24dfba22c96948580d4a12f831397
Patch
https://git.kernel.org/stable/c/e0b212ec9d8177d6f7c404315293f6a085d6ee42
Patch