CVE-2022-48661

Summary

In the Linux kernel, the following vulnerability has been resolved:

gpio: mockup: Fix potential resource leakage when register a chip

If creation of software node fails, the locally allocated string array is left unfreed. Free it on error path.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux6fda593f3082ef1aa783ac13e89f673fd69a2cb6 < 9b26723e058faaf11b532fb4aa16d6849d581790affected
LinuxLinux6fda593f3082ef1aa783ac13e89f673fd69a2cb6 < 41f857033c44442a27f591fda8d986e7c9e42872affected
LinuxLinux6fda593f3082ef1aa783ac13e89f673fd69a2cb6 < 02743c4091ccfb246f5cdbbe3f44b152d5d12933affected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux5.15.71 <= 5.15.*unaffected
LinuxLinux5.19.12 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References