CVE-2022-49120

Summary

In the Linux kernel, the following vulnerability has been resolved:

scsi: pm8001: Fix task leak in pm8001_send_abort_all()

In pm8001_send_abort_all(), make sure to free the allocated sas task if pm8001_tag_alloc() or pm8001_mpi_build_cmd() fail.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc6b9ef5779c3e1edfa9de949d2a51252bc347663 < 2051044d7901f1a9d7be95d0d32e53b88e9548f7affected
LinuxLinuxc6b9ef5779c3e1edfa9de949d2a51252bc347663 < 2290dcad6f65864dec518fb2d5fb45f67d684150affected
LinuxLinuxc6b9ef5779c3e1edfa9de949d2a51252bc347663 < 146cae06d2682d7563732544be334e8e6d3862b8affected
LinuxLinuxc6b9ef5779c3e1edfa9de949d2a51252bc347663 < 34c79d16ee69cb53288c202bb1ab0ba0130d9674affected
LinuxLinuxc6b9ef5779c3e1edfa9de949d2a51252bc347663 < f90a74892f3acf0cdec5844e90fc8686ca13e7d7affected
LinuxLinux3.10affected
LinuxLinux0 < 3.10unaffected
LinuxLinux5.10.111 <= 5.10.*unaffected
LinuxLinux5.15.34 <= 5.15.*unaffected
LinuxLinux5.16.20 <= 5.16.*unaffected
LinuxLinux5.17.3 <= 5.17.*unaffected
LinuxLinux5.18 <= *unaffected

Weaknesses

References