CVE-2022-49896 cxl/pmem: Fix cxl_pmem_region and cxl_memdev leak

In the Linux kernel, the following vulnerability has been resolved: cxl/pmem: Fix cxlpmemregion and cxlmemdev leak When a cxlnvdimm object goes through a -remove event device physically removed, nvdimm-bridge disabled, or nvdimm device disabled, then any associated regions must also be disabled. ...

CVE-2022-49896

CVE-2022-49896 relates to the Linux kernel’s cxl/pmem subsystem. The issue: when a cxl_nvdimm object is removed, associated regions were not consistently disabled, because the driver tracked only one region per nvdimm device. This could leak regions and cause cxl_memdev reference leaks. The vulne...

CVE-2023-52849

In the Linux kernel, the following vulnerability has been resolved: cxl/mem: Fix shutdown order Ira reports that removing cxlmockmem causes a crash with the following trace: BUG: kernel NULL pointer dereference, address: 0000000000000044 .. RIP: 0010:cxlregiondecodereset+0x7f/0x180 cxlcore .. Cal...

GSD-2022-1007829 cxl/pmem: Fix cxl_pmem_region and cxl_memdev leak

cxl/pmem: Fix cxlpmemregion and cxlmemdev leak This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.8 by commit...