CVE-2022-48885

In the Linux kernel, the following vulnerability has been resolved: ice: Fix potential memory leak in ice_gnss_tty_write() The ice_gnss_tty_write() return directly if the write_buf alloc failed, leaking the cmd_buf. Fix by free cmd_buf if write_buf alloc failed.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.2:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.2:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.2:rc3:*:*:*:*:*:*

History

06 Sep 2024, 14:46

Type Values Removed Values Added
References () https://git.kernel.org/stable/c/500ca1da9d0876244eb4d1b0ece6fa0e9968d45d - () https://git.kernel.org/stable/c/500ca1da9d0876244eb4d1b0ece6fa0e9968d45d - Patch
References () https://git.kernel.org/stable/c/f58985620f55580a07d40062c4115d8c9cf6ae27 - () https://git.kernel.org/stable/c/f58985620f55580a07d40062c4115d8c9cf6ae27 - Patch
CPE cpe:2.3:o:linux:linux_kernel:6.2:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.2:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.2:rc1:*:*:*:*:*:*
CWE CWE-401
First Time Linux linux Kernel
Linux
Summary
  • (es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: ice: soluciona una posible pérdida de memoria en ice_gnss_tty_write(). El ice_gnss_tty_write() regresa directamente si falla la asignación write_buf, filtrando el cmd_buf. Corrija mediante cmd_buf gratuito si falla la asignación de write_buf.
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.5

21 Aug 2024, 07:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-08-21 07:15

Updated : 2024-09-06 14:46


NVD link : CVE-2022-48885

Mitre link : CVE-2022-48885

CVE.ORG link : CVE-2022-48885


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-401

Missing Release of Memory after Effective Lifetime