CVE-2022-49713
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
usb: dwc2: Fix memory leak in dwc2_hcd_init
usb_create_hcd will alloc memory for hcd, and we should call usb_put_hcd to free it when platform_get_resource() fails to prevent memory leak. goto error2 label instead error1 to fix this.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 4b7f4a0eb92bf37bea4cd838c7f83ea42823ca8b < 981ee40649e5fd9550f82db1fbb3bfab037da346 | affected |
| Linux | Linux | a7182993dd8e09f96839ddc3ac54f9b37370d282 < 84e6d0af87e27bbc0db94f2e7323b34abe17b6e5 | affected |
| Linux | Linux | 8b9c1c33e51d0959f2aec573dfbac0ffd3f5c0b7 < 6506aff2dc2f7059aa3d45ee2e8639b25e87090f | affected |
| Linux | Linux | 2754fa3b73df7d0ae042f3ed6cfd9df9042f6262 < a44a8a762f7fe9ad3c065813d058e835a6180cb2 | affected |
| Linux | Linux | 856e6e8e0f9300befa87dde09edb578555c99a82 < 701d8ec01e0f229d4db6f43d3d64ee479120cbeb | affected |
| Linux | Linux | 856e6e8e0f9300befa87dde09edb578555c99a82 < 52bfcedbfd5bf962dbdcb6e761f4d0dd3ba26dfd | affected |
| Linux | Linux | 856e6e8e0f9300befa87dde09edb578555c99a82 < 3755278f078460b021cd0384562977bf2039a57a | affected |
| Linux | Linux | 337f00a0bc62d7cb7d10ec0b872c79009a1641df | affected |
| Linux | Linux | 4.14.250 < 4.14.285 | affected |
| Linux | Linux | 4.19.210 < 4.19.249 | affected |
| Linux | Linux | 5.4.152 < 5.4.200 | affected |
| Linux | Linux | 5.10.72 < 5.10.124 | affected |
| Linux | Linux | 5.14.11 < 5.15 | affected |
| Linux | Linux | 5.15 | affected |
| Linux | Linux | 0 < 5.15 | unaffected |
| Linux | Linux | 4.14.285 <= 4.14.* | unaffected |
| Linux | Linux | 4.19.249 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.200 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.124 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.49 <= 5.15.* | unaffected |
| Linux | Linux | 5.18.6 <= 5.18.* | unaffected |
| Linux | Linux | 5.19 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/981ee40649e5fd9550f82db1fbb3bfab037da346
- https://git.kernel.org/stable/c/84e6d0af87e27bbc0db94f2e7323b34abe17b6e5
- https://git.kernel.org/stable/c/6506aff2dc2f7059aa3d45ee2e8639b25e87090f
- https://git.kernel.org/stable/c/a44a8a762f7fe9ad3c065813d058e835a6180cb2
- https://git.kernel.org/stable/c/701d8ec01e0f229d4db6f43d3d64ee479120cbeb
- https://git.kernel.org/stable/c/52bfcedbfd5bf962dbdcb6e761f4d0dd3ba26dfd
- https://git.kernel.org/stable/c/3755278f078460b021cd0384562977bf2039a57a
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.