CVE-2022-49923

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-49923

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49923.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-49923

Downstream

DEBIAN-CVE-2022-49923

SUSE-SU-2025:01918-1

SUSE-SU-2025:01966-1

SUSE-SU-2025:01983-1

SUSE-SU-2025:02173-1

SUSE-SU-2025:02262-1

UBUNTU-CVE-2022-49923

Related

Published

2025-05-01T15:16:17Z

Modified

2025-10-01T15:15:37Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

nfc: nxp-nci: Fix potential memory leak in nxpncisend()

nxpncisend() will call nxpncii2cwrite(), and only free skb when nxpncii2cwrite() failed. However, even if the nxpncii2cwrite() run succeeds, the skb will not be freed in nxpncii2cwrite(). As the result, the skb will memleak. nxpncisend() should also free the skb when nxpncii2c_write() succeeds.

References

Affected packages