5.5

CVE-2022-50321

wifi: brcmfmac: fix potential memory leak in brcmf_netdev_start_xmit()

In the Linux kernel, the following vulnerability has been resolved:

wifi: brcmfmac: fix potential memory leak in brcmf_netdev_start_xmit()

The brcmf_netdev_start_xmit() returns NETDEV_TX_OK without freeing skb
in case of pskb_expand_head() fails, add dev_kfree_skb() to fix it.
Compile tested only.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.13 < 4.14.308
LinuxLinux Kernel Version >= 4.15 < 4.19.276
LinuxLinux Kernel Version >= 4.20 < 5.4.235
LinuxLinux Kernel Version >= 5.5 < 5.10.173
LinuxLinux Kernel Version >= 5.11 < 5.15.99
LinuxLinux Kernel Version >= 5.16 < 6.1.16
LinuxLinux Kernel Version >= 6.2 < 6.2.3
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.15% 0.041
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/4c55fdebc1c358de96bfab52ed309d58a3ba66ef
Patch
https://git.kernel.org/stable/c/e5d01e85cf46628647cd696cb72ba4659b18967f
Patch
https://git.kernel.org/stable/c/d869a189505224601e310c7769cb90b0e2f60b31
Patch
https://git.kernel.org/stable/c/e08e6812efb6a8c676e733de0518594d1517e0d9
Patch
https://git.kernel.org/stable/c/e8ef89e5b89ee041a94eecfb6c31fcc237f9168c
Patch
https://git.kernel.org/stable/c/7f159116d620615779adbf88a5d94713702216d8
Patch
https://git.kernel.org/stable/c/3a4d18318f473e97d628f410215b3fac32d07aed
Patch
https://git.kernel.org/stable/c/212fde3fe76e962598ce1d47b97cc78afdfc71b3
Patch