CVE-2022-49923

Source
https://nvd.nist.gov/vuln/detail/CVE-2022-49923
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49923.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-49923
Downstream
Related
Published
2025-05-01T15:16:17Z
Modified
2025-10-01T15:15:37Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

nfc: nxp-nci: Fix potential memory leak in nxpncisend()

nxpncisend() will call nxpncii2cwrite(), and only free skb when nxpncii2cwrite() failed. However, even if the nxpncii2cwrite() run succeeds, the skb will not be freed in nxpncii2cwrite(). As the result, the skb will memleak. nxpncisend() should also free the skb when nxpncii2c_write() succeeds.

References

Affected packages