CVE-2022-48885

Summary

In the Linux kernel, the following vulnerability has been resolved:

ice: Fix potential memory leak in ice_gnss_tty_write()

The ice_gnss_tty_write() return directly if the write_buf alloc failed, leaking the cmd_buf.

Fix by free cmd_buf if write_buf alloc failed.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd6b98c8d242aee40e7b8919dd07b593b0739e38d < 500ca1da9d0876244eb4d1b0ece6fa0e9968d45daffected
LinuxLinuxd6b98c8d242aee40e7b8919dd07b593b0739e38d < f58985620f55580a07d40062c4115d8c9cf6ae27affected
LinuxLinux6.0affected
LinuxLinux0 < 6.0unaffected
LinuxLinux6.1.7 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References