CVE-2022-49821
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-49821
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49821.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-49821
- Related
- Published
- 2025-05-01T15:16:05Z
- Modified
- 2025-05-02T14:48:13.414778Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
mISDN: fix possible memory leak in mISDNdspelement_register()
Afer commit 1fa5ae857bb1 ("driver core: get rid of struct device's busid string array"), the name of device is allocated dynamically, use putdevice() to give up the reference, so that the name can be freed in kobject_cleanup() when the refcount is 0.
The 'entry' is going to be freed in mISDNdspdevrelease(), so the kfree() is removed. listdel() is called in mISDNdspdev_release(), so it need be initialized.
- References
-
- https://git.kernel.org/stable/c/083a2c9ef82e184bdf0b9f9a1e5fc38d32afbb47
- https://git.kernel.org/stable/c/0f2c681900a01e3f23789bca26d88268c3d5b51d
- https://git.kernel.org/stable/c/727ed7d28348c026c7ef4d852f3d0e5054d376e8
- https://git.kernel.org/stable/c/7a05e3929668c8cfef495c69752a9e91fac4878f
- https://git.kernel.org/stable/c/98a2ac1ca8fd6eca6867726fe238d06e75eb1acd
- https://git.kernel.org/stable/c/b119bedbefb7dd9ed8bf8cb9f1056504250d610e
- https://git.kernel.org/stable/c/bbd53d05c4c892080ef3b617eff4f57903acecb9
- https://git.kernel.org/stable/c/d4b8394725079670be309f9a35ad88a8cbbaaefd
- https://security-tracker.debian.org/tracker/CVE-2022-49821
Affected packages
Debian:11 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.10.158-1
Debian:12 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Debian:13 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source