5.5

CVE-2022-50431

ALSA: aoa: i2sbus: fix possible memory leak in i2sbus_add_dev()

In the Linux kernel, the following vulnerability has been resolved:

ALSA: aoa: i2sbus: fix possible memory leak in i2sbus_add_dev()

dev_set_name() in soundbus_add_one() allocates memory for name, it need be
freed when of_device_register() fails, call soundbus_dev_put() to give up
the reference that hold in device_initialize(), so that it can be freed in
kobject_cleanup() when the refcount hit to 0. And other resources are also
freed in i2sbus_release_dev(), so it can return 0 directly.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 2.6.18 < 4.9.332
LinuxLinux Kernel Version >= 4.10 < 4.14.298
LinuxLinux Kernel Version >= 4.15 < 4.19.264
LinuxLinux Kernel Version >= 4.20 < 5.4.223
LinuxLinux Kernel Version >= 5.5 < 5.10.153
LinuxLinux Kernel Version >= 5.11 < 5.15.77
LinuxLinux Kernel Version >= 5.16 < 6.0.7
LinuxLinux Kernel Version6.1 Updaterc1
LinuxLinux Kernel Version6.1 Updaterc2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.15% 0.042
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/027fee10e3a400cf6f3237374a1248da1082807b
Patch
https://git.kernel.org/stable/c/4a4c8482e370d697738a78dcd7bf2780832cb712
Patch
https://git.kernel.org/stable/c/5bdea674534153110b90d70b02f2fbaf48b2c0eb
Patch
https://git.kernel.org/stable/c/802532a50acf501fdafe38a84ca2aa886d68af68
Patch
https://git.kernel.org/stable/c/c7524279c8ddc7dbf3463bec70e0289097959944
Patch
https://git.kernel.org/stable/c/ce6fd1c382a38b75557db85a2fe99d285540a03d
Patch
https://git.kernel.org/stable/c/e81d7826b8f40430a1ea1b330e24d9a9eb4512c4
Patch
https://git.kernel.org/stable/c/fd410d24665e4efb3c1796797181265efe553e9c
Patch