In the Linux kernel, the following vulnerability has been resolved:
net: ieee802154: ca8210: Stop leaking skb's
Upon error the ieee802154xmitcomplete() helper is not called. Only ieee802154wakequeue() is called manually. We then leak the skb structure.
Free the skb structure upon error before returning.
[ { "signature_type": "Line", "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@94cd597e20ed4acedb8f15f029d92998b011cb1a", "signature_version": "v1", "target": { "file": "drivers/net/ieee802154/ca8210.c" }, "digest": { "threshold": 0.9, "line_hashes": [ "97954433979373439563662669753516740962", "50542518621803290382208126465863461301", "66363238069649797432578683802656425861", "244896767524834788618074195252461229275" ] }, "id": "CVE-2022-48722-b48893d3" }, { "signature_type": "Function", "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@94cd597e20ed4acedb8f15f029d92998b011cb1a", "signature_version": "v1", "target": { "function": "ca8210_async_xmit_complete", "file": "drivers/net/ieee802154/ca8210.c" }, "digest": { "function_hash": "167144803641667878292603399653697958289", "length": 607.0 }, "id": "CVE-2022-48722-def91d0f" } ]