CVE-2022-48907

Summary

In the Linux kernel, the following vulnerability has been resolved:

auxdisplay: lcd2s: Fix memory leak in ->remove()

Once allocated the struct lcd2s_data is never freed. Fix the memory leak by switching to devm_kzalloc().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8c9108d014c5bd0f0da2e3544eb45dc56a6da92b < 5d53cd33f4253aa4cf02bf7e670b3c6a99674351affected
LinuxLinux8c9108d014c5bd0f0da2e3544eb45dc56a6da92b < 3585ed5f9b11a6094dd991d76a1541e5d03b986aaffected
LinuxLinux8c9108d014c5bd0f0da2e3544eb45dc56a6da92b < 898c0a15425a5bcaa8d44bd436eae5afd2483796affected
LinuxLinux5.11affected
LinuxLinux0 < 5.11unaffected
LinuxLinux5.15.27 <= 5.15.*unaffected
LinuxLinux5.16.13 <= 5.16.*unaffected
LinuxLinux5.17 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References