CVE-2022-50809

Summary

In the Linux kernel, the following vulnerability has been resolved:

xhci: dbc: Fix memory leak in xhci_alloc_dbc()

If DbC is already in use, then the allocated memory for the xhci_dbc struct doesn't get freed before returning NULL, which leads to a memleak.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd7afb4a13f6c6ee7df7d0bfc67b4ef19ece6d802 < 103b459590e1eb4d80b02761eb36c7cae1d9b58eaffected
LinuxLinux534675942e901959b5d8dc11ea526c4e48817d8e < 116d6a6964986ea7eb516daa36128d270f1f248daffected
LinuxLinux534675942e901959b5d8dc11ea526c4e48817d8e < 69e67c804d09a6b1bcda1f4f242f151f813eeb4aaffected
LinuxLinux534675942e901959b5d8dc11ea526c4e48817d8e < d591b32e519603524a35b172156db71df9116902affected
LinuxLinux5.15.58 < 5.15.75affected
LinuxLinux5.18affected
LinuxLinux0 < 5.18unaffected
LinuxLinux5.15.75 <= 5.15.*unaffected
LinuxLinux5.19.17 <= 5.19.*unaffected
LinuxLinux6.0.3 <= 6.0.*unaffected
LinuxLinux6.1 <= *unaffected

Weaknesses

References