CVE-2022-50115
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
ASoC: SOF: ipc3-topology: Prevent double freeing of ipc_control_data via load_bytes
We have sanity checks for byte controls and if any of the fail the locally allocated scontrol->ipc_control_data is freed up, but not set to NULL.
On a rollback path of the error the higher level code will also try to free the scontrol->ipc_control_data which will eventually going to lead to memory corruption as double freeing memory is not a good thing.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | b5cee8feb1d482a9d07b677f4f2f9565bacda53e < 8463986b54295e6b65ddf2b7c65627d01ce7643b | affected |
| Linux | Linux | b5cee8feb1d482a9d07b677f4f2f9565bacda53e < c2eddfcafcffaf1b9245ea0dde9143bbfb47d5d1 | affected |
| Linux | Linux | b5cee8feb1d482a9d07b677f4f2f9565bacda53e < d5bd47f3ca124058a8e87eae4508afeda2132611 | affected |
| Linux | Linux | 5.18 | affected |
| Linux | Linux | 0 < 5.18 | unaffected |
| Linux | Linux | 5.18.18 <= 5.18.* | unaffected |
| Linux | Linux | 5.19.2 <= 5.19.* | unaffected |
| Linux | Linux | 6.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/8463986b54295e6b65ddf2b7c65627d01ce7643b
- https://git.kernel.org/stable/c/c2eddfcafcffaf1b9245ea0dde9143bbfb47d5d1
- https://git.kernel.org/stable/c/d5bd47f3ca124058a8e87eae4508afeda2132611
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.