CVE-2022-49191

Summary

In the Linux kernel, the following vulnerability has been resolved:

mxser: fix xmit_buf leak in activate when LSR == 0xff

When LSR is 0xff in ->activate() (rather unlike), we return an error. Provided ->shutdown() is not called when ->activate() fails, nothing actually frees the buffer in this case.

Fix this by properly freeing the buffer in a designated label. We jump there also from the "!info->type" if now too.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux6769140d304731f0a3b177470a2adb4bacd9036b < 376922045009f8ea2d20a8fa3475e95b47c41690affected
LinuxLinux6769140d304731f0a3b177470a2adb4bacd9036b < 125b7c929fc9b1e5eaa344bceb6367dfa6fd3f9daffected
LinuxLinux6769140d304731f0a3b177470a2adb4bacd9036b < 685b6d16bf89595310b5d61394c9b97cc9505c7caffected
LinuxLinux6769140d304731f0a3b177470a2adb4bacd9036b < 996291d06851a26678a0fab488b6e1f0677c0576affected
LinuxLinux6769140d304731f0a3b177470a2adb4bacd9036b < 2cd05c38a27bee7fb42aa4d43174d68ac55dac0faffected
LinuxLinux6769140d304731f0a3b177470a2adb4bacd9036b < b125b08dbee3611f03f53b71471813ed4ccafcddaffected
LinuxLinux6769140d304731f0a3b177470a2adb4bacd9036b < 6c9041b2f90c0eace73106f22350e1d2c98f5edcaffected
LinuxLinux6769140d304731f0a3b177470a2adb4bacd9036b < 6dffc2035fbaada60ca8db59e0962e34f760370aaffected
LinuxLinux6769140d304731f0a3b177470a2adb4bacd9036b < cd3a4907ee334b40d7aa880c7ab310b154fd5cd4affected
LinuxLinux2.6.33affected
LinuxLinux0 < 2.6.33unaffected
LinuxLinux4.9.311 <= 4.9.*unaffected
LinuxLinux4.14.276 <= 4.14.*unaffected
LinuxLinux4.19.238 <= 4.19.*unaffected
LinuxLinux5.4.189 <= 5.4.*unaffected
LinuxLinux5.10.110 <= 5.10.*unaffected
LinuxLinux5.15.33 <= 5.15.*unaffected
LinuxLinux5.16.19 <= 5.16.*unaffected
LinuxLinux5.17.2 <= 5.17.*unaffected
LinuxLinux5.18 <= *unaffected

Weaknesses

References