CVE-2022-50537

Summary

In the Linux kernel, the following vulnerability has been resolved:

firmware: raspberrypi: fix possible memory leak in rpi_firmware_probe()

In rpi_firmware_probe(), if mbox_request_channel() fails, the 'fw' will not be freed through rpi_firmware_delete(), fix this leak by calling kfree() in the error path.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd537afa08e156a0a72562e625506825c2776fcfa < 62ac943eb2a9d655e431b9bc98ff6d7bd51a0e49affected
LinuxLinux60831f5ae6c713afceb6d29f40899ed112f36059 < d34742245e4366579f9a80f8cfe4a63248e838e0affected
LinuxLinux1e7c57355a3bc617fc220234889e49fe722a6305 < b308fdedef095aac14569f810d46edf773ea7d1eaffected
LinuxLinux1e7c57355a3bc617fc220234889e49fe722a6305 < 6757dd2193fe18c5c5fe3050e7f2ff9dcbd1ff34affected
LinuxLinux1e7c57355a3bc617fc220234889e49fe722a6305 < 71d2abab374f707ab8ac8dcef191fd2b3b67b8bdaffected
LinuxLinux1e7c57355a3bc617fc220234889e49fe722a6305 < 7b51161696e803fd5f9ad55b20a64c2df313f95caffected
LinuxLinux5.10.65 < 5.10.163affected
LinuxLinux5.13affected
LinuxLinux0 < 5.13unaffected
LinuxLinux5.10.163 <= 5.10.*unaffected
LinuxLinux5.15.86 <= 5.15.*unaffected
LinuxLinux6.0.16 <= 6.0.*unaffected
LinuxLinux6.1.2 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

References