CVE-2022-48669

Summary

In the Linux kernel, the following vulnerability has been resolved:

powerpc/pseries: Fix potential memleak in papr_get_attr()

buf is allocated in papr_get_attr(), and krealloc() of buf could fail. We need to free the original buf in the case of failure.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux3c14b73454cf9f6e2146443fdfbdfb912c0efed3 < a3f22feb2220a945d1c3282e34199e8bcdc5afc4affected
LinuxLinux3c14b73454cf9f6e2146443fdfbdfb912c0efed3 < 1699fb915b9f61794d559b55114c09a390aaf234affected
LinuxLinux3c14b73454cf9f6e2146443fdfbdfb912c0efed3 < 7f7d39fe3d80d6143404940b2413010cf6527029affected
LinuxLinux3c14b73454cf9f6e2146443fdfbdfb912c0efed3 < d0647c3e81eff62b66d46fd4e475318cb8cb3610affected
LinuxLinux3c14b73454cf9f6e2146443fdfbdfb912c0efed3 < cda9c0d556283e2d4adaa9960b2dc19b16156baeaffected
LinuxLinux5.18affected
LinuxLinux0 < 5.18unaffected
LinuxLinux6.1.83 <= 6.1.*unaffected
LinuxLinux6.6.23 <= 6.6.*unaffected
LinuxLinux6.7.11 <= 6.7.*unaffected
LinuxLinux6.8.2 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References