CVE-2022-49881
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
wifi: cfg80211: fix memory leak in query_regdb_file()
In the function query_regdb_file() the alpha2 parameter is duplicated using kmemdup() and subsequently freed in regdb_fw_cb(). However, request_firmware_nowait() can fail without calling regdb_fw_cb() and thus leak memory.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 007f6c5e6eb45c81ee89368a5f226572ae638831 < 219446396786330937bcd382a7bc4ccd767383bc | affected |
| Linux | Linux | 007f6c5e6eb45c81ee89368a5f226572ae638831 < 0ede1a988299e95d54bd89551fd635980572e920 | affected |
| Linux | Linux | 007f6c5e6eb45c81ee89368a5f226572ae638831 < e1e12180321f416d83444f2cdc9259e0f5093d35 | affected |
| Linux | Linux | 007f6c5e6eb45c81ee89368a5f226572ae638831 < 38c9fa2cc6bf4b6e1a74057aef8b5cffd23d3264 | affected |
| Linux | Linux | 007f6c5e6eb45c81ee89368a5f226572ae638831 < e9b5a4566d5bc71cc901be50d1fa24da00613120 | affected |
| Linux | Linux | 007f6c5e6eb45c81ee89368a5f226572ae638831 < 57b962e627ec0ae53d4d16d7bd1033e27e67677a | affected |
| Linux | Linux | 4.15 | affected |
| Linux | Linux | 0 < 4.15 | unaffected |
| Linux | Linux | 4.19.267 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.225 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.155 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.79 <= 5.15.* | unaffected |
| Linux | Linux | 6.0.9 <= 6.0.* | unaffected |
| Linux | Linux | 6.1 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/219446396786330937bcd382a7bc4ccd767383bc
- https://git.kernel.org/stable/c/0ede1a988299e95d54bd89551fd635980572e920
- https://git.kernel.org/stable/c/e1e12180321f416d83444f2cdc9259e0f5093d35
- https://git.kernel.org/stable/c/38c9fa2cc6bf4b6e1a74057aef8b5cffd23d3264
- https://git.kernel.org/stable/c/e9b5a4566d5bc71cc901be50d1fa24da00613120
- https://git.kernel.org/stable/c/57b962e627ec0ae53d4d16d7bd1033e27e67677a
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.