5.5

CVE-2022-50389

tpm: tpm_crb: Add the missed acpi_put_table() to fix memory leak

In the Linux kernel, the following vulnerability has been resolved:

tpm: tpm_crb: Add the missed acpi_put_table() to fix memory leak

In crb_acpi_add(), we get the TPM2 table to retrieve information
like start method, and then assign them to the priv data, so the
TPM2 table is not used after the init, should be freed, call
acpi_put_table() to fix the memory leak.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.0 < 4.14.303
LinuxLinux Kernel Version >= 4.15 < 4.19.270
LinuxLinux Kernel Version >= 4.20 < 5.4.229
LinuxLinux Kernel Version >= 5.5 < 5.10.163
LinuxLinux Kernel Version >= 5.11 < 5.15.87
LinuxLinux Kernel Version >= 5.16 < 6.0.17
LinuxLinux Kernel Version >= 6.1 < 6.1.3
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.15% 0.041
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/08fd965521d0e172d540cf945517810895fcb199
Patch
https://git.kernel.org/stable/c/1af2232b13837ce0f3a082b9f43735b09aafc367
Patch
https://git.kernel.org/stable/c/927860dfa161ae8392a264197257dbdc52b26b0f
Patch
https://git.kernel.org/stable/c/0bd9b4be721c776f77adcaf34105dfca3007ddb9
Patch
https://git.kernel.org/stable/c/986cd9a9b95423e35a2cbb8e9105aec0e0d7f337
Patch
https://git.kernel.org/stable/c/2fcd3dc8b97a14f1672729c86b7041a1a89b052a
Patch
https://git.kernel.org/stable/c/b0785edaf649e5f04dc7f75533e810f4c00e4106
Patch
https://git.kernel.org/stable/c/37e90c374dd11cf4919c51e847c6d6ced0abc555
Patch