CVE-2022-48958

Summary

In the Linux kernel, the following vulnerability has been resolved:

ethernet: aeroflex: fix potential skb leak in greth_init_rings()

The greth_init_rings() function won't free the newly allocated skb when dma_mapping_error() returns error, so add dev_kfree_skb() to fix it.

Compile tested only.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd4c41139df6e74c6fff0cbac43e51cab782133be < 223654e2e2c8d05347cd8e300f8d1ec6023103ddaffected
LinuxLinuxd4c41139df6e74c6fff0cbac43e51cab782133be < cb1e293f858e5e1152b8791047ed4bdaaf392189affected
LinuxLinuxd4c41139df6e74c6fff0cbac43e51cab782133be < bfaa8f6c5b84b295dd73b0138b57c5555ca12b1caffected
LinuxLinuxd4c41139df6e74c6fff0cbac43e51cab782133be < 99669d94ce145389f1d6f197e6e18ed50d43fb76affected
LinuxLinuxd4c41139df6e74c6fff0cbac43e51cab782133be < 87277bdf2c370ab2d07cfe77dfa9b37f82bbe1e5affected
LinuxLinuxd4c41139df6e74c6fff0cbac43e51cab782133be < c7adcbd0fd3fde1b19150c3e955fb4a30c5bd9b7affected
LinuxLinuxd4c41139df6e74c6fff0cbac43e51cab782133be < dd62867a6383f78f75f07039394aac25924a3307affected
LinuxLinuxd4c41139df6e74c6fff0cbac43e51cab782133be < 063a932b64db3317ec020c94466fe52923a15f60affected
LinuxLinux2.6.34affected
LinuxLinux0 < 2.6.34unaffected
LinuxLinux4.9.336 <= 4.9.*unaffected
LinuxLinux4.14.302 <= 4.14.*unaffected
LinuxLinux4.19.269 <= 4.19.*unaffected
LinuxLinux5.4.227 <= 5.4.*unaffected
LinuxLinux5.10.159 <= 5.10.*unaffected
LinuxLinux5.15.83 <= 5.15.*unaffected
LinuxLinux6.0.13 <= 6.0.*unaffected
LinuxLinux6.1 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References