CVE-2022-49981

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-49981
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49981.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-49981
Downstream
Related
Published
2025-06-18T11:00:43.351Z
Modified
2026-03-12T03:26:02.868720Z
Summary
HID: hidraw: fix memory leak in hidraw_release()
Details

In the Linux kernel, the following vulnerability has been resolved:

HID: hidraw: fix memory leak in hidraw_release()

Free the buffered reports before deleting the list entry.

BUG: memory leak unreferenced object 0xffff88810e72f180 (size 32): comm "softirq", pid 0, jiffies 4294945143 (age 16.080s) hex dump (first 32 bytes): 64 f3 c6 6a d1 88 07 04 00 00 00 00 00 00 00 00 d..j............ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<ffffffff814ac6c3>] kmemdup+0x23/0x50 mm/util.c:128 [<ffffffff8357c1d2>] kmemdup include/linux/fortify-string.h:440 [inline] [<ffffffff8357c1d2>] hidrawreportevent+0xa2/0x150 drivers/hid/hidraw.c:521 [<ffffffff8356ddad>] hidreportrawevent+0x27d/0x740 drivers/hid/hid-core.c:1992 [<ffffffff8356e41e>] hidinputreport+0x1ae/0x270 drivers/hid/hid-core.c:2065 [<ffffffff835f0d3f>] hidirq_in+0x1ff/0x250 drivers/hid/usbhid/hid-core.c:284 [<ffffffff82d3c7f9>] __usbhcdgivebackurb+0xf9/0x230 drivers/usb/core/hcd.c:1670 [<ffffffff82d3cc26>] usbhcdgivebackurb+0x1b6/0x1d0 drivers/usb/core/hcd.c:1747 [<ffffffff82ef1e14>] dummytimer+0x8e4/0x14c0 drivers/usb/gadget/udc/dummyhcd.c:1988 [<ffffffff812f50a8>] calltimerfn+0x38/0x200 kernel/time/timer.c:1474 [<ffffffff812f5586>] expire_timers kernel/time/timer.c:1519 [inline] [<ffffffff812f5586>] __run_timers.part.0+0x316/0x430 kernel/time/timer.c:1790 [<ffffffff812f56e4>] __runtimers kernel/time/timer.c:1768 [inline] [<ffffffff812f56e4>] runtimer_softirq+0x44/0x90 kernel/time/timer.c:1803 [<ffffffff848000e6>] __dosoftirq+0xe6/0x2ea kernel/softirq.c:571 [<ffffffff81246db0>] invokesoftirq kernel/softirq.c:445 [inline] [<ffffffff81246db0>] __irqexitrcu kernel/softirq.c:650 [inline] [<ffffffff81246db0>] irqexitrcu+0xc0/0x110 kernel/softirq.c:662 [<ffffffff84574f02>] sysvecapictimerinterrupt+0xa2/0xd0 arch/x86/kernel/apic/apic.c:1106 [<ffffffff84600c8b>] asmsysvecapictimerinterrupt+0x1b/0x20 arch/x86/include/asm/idtentry.h:649 [<ffffffff8458a070>] nativesafehalt arch/x86/include/asm/irqflags.h:51 [inline] [<ffffffff8458a070>] archsafehalt arch/x86/include/asm/irqflags.h:89 [inline] [<ffffffff8458a070>] acpisafehalt drivers/acpi/processoridle.c:111 [inline] [<ffffffff8458a070>] acpiidledoentry+0xc0/0xd0 drivers/acpi/processoridle.c:554

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49981.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
86166b7bcda0bcb53525114fa1c87ac432be478e
Fixed
1bea0bbf66001b0c7bf239a4d70eaf47824d3feb
Fixed
c06b013f5cbfeafe0a9cfa5a7128604c34e0e517
Fixed
f5b7e9611cffec345d62d5bdd8b6e30e89956818
Fixed
53c7c4d5d40b45c127cb1193bf3e9670f844c3cf
Fixed
7e2fa79226580b035b00260d9f240ab9bda4af5d
Fixed
dfd27a737283313a3e626e97b9d9b2d8d6a94188
Fixed
52a3c62a815161c2dcf38ac421f6c41d8679462b
Fixed
a5623a203cffe2d2b84d2f6c989d9017db1856af

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49981.json"