CVE-2022-50561
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
iio: fix memory leak in iio_device_register_eventset()
When iio_device_register_sysfs_group() returns failed, iio_device_register_eventset() needs to free attrs array.
Otherwise, kmemleak would scan & report memory leak as below:
unreferenced object 0xffff88810a1cc3c0 (size 32): comm "100-i2c-vcnl302", pid 728, jiffies 4295052307 (age 156.027s) backtrace: __kmalloc+0x46/0x1b0 iio_device_register_eventset at drivers/iio/industrialio-event.c:541 __iio_device_register at drivers/iio/industrialio-core.c:1959 __devm_iio_device_register at drivers/iio/industrialio-core.c:2040
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 32f171724e5cbecc80594fb6eced057cfdd6eb6f < dc6afd6070f3a5b086c8c5cfa6ded63ae44494da | affected |
| Linux | Linux | 32f171724e5cbecc80594fb6eced057cfdd6eb6f < 5de3add7509c95685f1185683b817dd206c4b1f1 | affected |
| Linux | Linux | 32f171724e5cbecc80594fb6eced057cfdd6eb6f < a154b1c139fbf6a49762159be81d425d41ceec87 | affected |
| Linux | Linux | 32f171724e5cbecc80594fb6eced057cfdd6eb6f < 86fdd15e10e404e70ecb2a3bff24d70356d42b36 | affected |
| Linux | Linux | 5.13 | affected |
| Linux | Linux | 0 < 5.13 | unaffected |
| Linux | Linux | 5.15.86 <= 5.15.* | unaffected |
| Linux | Linux | 6.0.16 <= 6.0.* | unaffected |
| Linux | Linux | 6.1.2 <= 6.1.* | unaffected |
| Linux | Linux | 6.2 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/dc6afd6070f3a5b086c8c5cfa6ded63ae44494da
- https://git.kernel.org/stable/c/5de3add7509c95685f1185683b817dd206c4b1f1
- https://git.kernel.org/stable/c/a154b1c139fbf6a49762159be81d425d41ceec87
- https://git.kernel.org/stable/c/86fdd15e10e404e70ecb2a3bff24d70356d42b36
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.