5.5

CVE-2022-50294

wifi: libertas: fix memory leak in lbs_init_adapter()

In the Linux kernel, the following vulnerability has been resolved:

wifi: libertas: fix memory leak in lbs_init_adapter()

When kfifo_alloc() failed in lbs_init_adapter(), cmd buffer is not
released. Add free memory to processing error path.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 2.6.26 < 4.14.308
LinuxLinux Kernel Version >= 4.15 < 4.19.276
LinuxLinux Kernel Version >= 4.20 < 5.4.235
LinuxLinux Kernel Version >= 5.5 < 5.10.173
LinuxLinux Kernel Version >= 5.11 < 5.15.99
LinuxLinux Kernel Version >= 5.16 < 6.1.16
LinuxLinux Kernel Version >= 6.2 < 6.2.3
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.15% 0.041
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/4c102ad59bfa66c0f6662af64fa3b9007b02c20f
Patch
https://git.kernel.org/stable/c/98e0ff6980c89239d9e5d3da90d791c2383dc23a
Patch
https://git.kernel.org/stable/c/23b34e08de5c2380414c9d3c33e8235094bcccae
Patch
https://git.kernel.org/stable/c/9c8f50c7433bdfba1588831c413136ecc3f29f99
Patch
https://git.kernel.org/stable/c/037f84c0bfae5c436c651d0e804264e2648010ec
Patch
https://git.kernel.org/stable/c/653d13a73e498d0bb6aeaf689aaa960defa7878b
Patch
https://git.kernel.org/stable/c/d46c33f667b05c22bc5c5b69aa730349c4b6fe31
Patch
https://git.kernel.org/stable/c/16a03958618fb91bb1bc7077cf3211055162cc2f
Patch