CVE-2022-50140

Summary

In the Linux kernel, the following vulnerability has been resolved:

memstick/ms_block: Fix a memory leak

'erased_blocks_bitmap' is never freed. As it is allocated at the same time as 'used_blocks_bitmap', it is likely that it should be freed also at the same time.

Add the corresponding bitmap_free() in msb_data_clear().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0ab30494bc4f3bc1ea4659b7c5d97c5218554a63 < efd675246aec045507b9425c67b548cc2d782d8faffected
LinuxLinux0ab30494bc4f3bc1ea4659b7c5d97c5218554a63 < 37958980eb4cd71ae594ace093c11b6a91e165e8affected
LinuxLinux0ab30494bc4f3bc1ea4659b7c5d97c5218554a63 < 9d8b911fe3c3ed788c66edba7c90e32a4a7a5f53affected
LinuxLinux0ab30494bc4f3bc1ea4659b7c5d97c5218554a63 < 9260a154b3b5e387dbceec7c0ac441470646bc6faffected
LinuxLinux0ab30494bc4f3bc1ea4659b7c5d97c5218554a63 < 961d7d12080fe70847f944d656e36cd0dd0214baaffected
LinuxLinux0ab30494bc4f3bc1ea4659b7c5d97c5218554a63 < 16e07966638717416abf45393d6a80a5a1034429affected
LinuxLinux0ab30494bc4f3bc1ea4659b7c5d97c5218554a63 < 39be95d1ff7b44c1e969af72ba9da7332dfcc1daaffected
LinuxLinux0ab30494bc4f3bc1ea4659b7c5d97c5218554a63 < 54eb7a55be6779c4d0c25eaf5056498a28595049affected
LinuxLinux3.12affected
LinuxLinux0 < 3.12unaffected
LinuxLinux4.14.291 <= 4.14.*unaffected
LinuxLinux4.19.256 <= 4.19.*unaffected
LinuxLinux5.4.211 <= 5.4.*unaffected
LinuxLinux5.10.137 <= 5.10.*unaffected
LinuxLinux5.15.61 <= 5.15.*unaffected
LinuxLinux5.18.18 <= 5.18.*unaffected
LinuxLinux5.19.2 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

References