CVE-2022-50420

Summary

In the Linux kernel, the following vulnerability has been resolved:

crypto: hisilicon/hpre - fix resource leak in remove process

In hpre_remove(), when the disable operation of qm sriov failed, the following logic should continue to be executed to release the remaining resources that have been allocated, instead of returning directly, otherwise there will be resource leakage.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc8b4b477079d1995cc0a1c10d5cdfd02be938cdf < 2b3e3ecdb402ff1053ee25b598ff21b9ddf4384faffected
LinuxLinuxc8b4b477079d1995cc0a1c10d5cdfd02be938cdf < 4e0de941d252d4e7c985981e78480c8d6f020b64affected
LinuxLinuxc8b4b477079d1995cc0a1c10d5cdfd02be938cdf < cb873c93a7ad27681920bf062ef052fca1e8d5b1affected
LinuxLinuxc8b4b477079d1995cc0a1c10d5cdfd02be938cdf < 45e6319bd5f2154d8b8c9f1eaa4ac030ba0d330caffected
LinuxLinux5.5affected
LinuxLinux0 < 5.5unaffected
LinuxLinux5.15.86 <= 5.15.*unaffected
LinuxLinux6.0.16 <= 6.0.*unaffected
LinuxLinux6.1.2 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References