CVE-2022-49312

In r871xudrvinit(), if r8712initdrvsw() fails, then the memory allocated by r8712allocioqueue() in r8712usbdvobjinit() is not properly released as there is no action will be performed by r8712usbdvobjdeinit(). To properly release it, we should call r8712freeioqueue() in r8712usbdvobjdeinit().

Besides, in r871xudevremove(), r8712usbdvobjdeinit() will be called by r871xdevunload() under condition padapter->bup and r8712freeioqueue() is called by r8712freedrvsw(). However, r8712usbdvobjdeinit() does not rely on padapter->bup and calling r8712freeioqueue() in r8712freedrvsw() is negative for better understading the code. So I move r8712usbdvobjdeinit() into r871xudevremove(), and remove r8712freeioqueue() from r8712freedrv_sw().

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49312.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

2865d42c78a9121caad52cb02d1fbb7f5cdbc4ef

Fixed

5a89a92efc342dd7c44b6056da87debc598f9c73

Fixed

8eb42d6d10f8fe509117859defddf9e72b4fa4d0

Fixed

205e039fead72e87ad2838f5e649a4c4834f648b

Fixed

a2882b8baad068d21c99fb2ab5a85a2bdbd5b834

Fixed

7288ff561de650d4139fab80e9cb0da9b5b32434

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49312.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

2.6.37

Fixed

5.10.122

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.47

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

5.17.15

Type: ECOSYSTEM
Events: Introduced

5.18.0

Fixed

5.18.4

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49312.json"