5.5

CVE-2022-50462

MIPS: vpe-mt: fix possible memory leak while module exiting

In the Linux kernel, the following vulnerability has been resolved:

MIPS: vpe-mt: fix possible memory leak while module exiting

Afer commit 1fa5ae857bb1 ("driver core: get rid of struct device's
bus_id string array"), the name of device is allocated dynamically,
it need be freed when module exiting, call put_device() to give up
reference, so that it can be freed in kobject_cleanup() when the
refcount hit to 0. The vpe_device is static, so remove kfree() from
vpe_device_release().
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 2.6.30 < 4.9.337
LinuxLinux Kernel Version >= 4.10 < 4.14.303
LinuxLinux Kernel Version >= 4.15 < 4.19.270
LinuxLinux Kernel Version >= 4.20 < 5.4.229
LinuxLinux Kernel Version >= 5.5 < 5.10.163
LinuxLinux Kernel Version >= 5.11 < 5.15.86
LinuxLinux Kernel Version >= 5.16 < 6.0.16
LinuxLinux Kernel Version >= 6.1 < 6.1.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.15% 0.045
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/170e9913c2ed5cfc37c0adf0fdbd368d2d8d8168
Patch
https://git.kernel.org/stable/c/48d42f4464d713fbdd79f334fdcd6e5be534cc67
Patch
https://git.kernel.org/stable/c/5822e8cc84ee37338ab0bdc3124f6eec04dc232d
Patch
https://git.kernel.org/stable/c/851ae5640875f06494e40002cd503b11a634c6fb
Patch
https://git.kernel.org/stable/c/9d180e0bb21c57bd6cca2adeb672d3b522e910b5
Patch
https://git.kernel.org/stable/c/ab3d47c1fd0202821abd473ca87580faafd47847
Patch
https://git.kernel.org/stable/c/b191dde84e40624d5577f64db0ec922c5c0ec57c
Patch
https://git.kernel.org/stable/c/b3325a443525e3b89151879b834519b21c5e3011
Patch
https://git.kernel.org/stable/c/e820a8192ff68570100347855b567512aec43819
Patch