CVE-2022-49334 mm/huge_memory: Fix xarray node memory leak

In the Linux kernel, the following vulnerability has been resolved: mm/hugememory: Fix xarray node memory leak If xassplitalloc fails to allocate the necessary nodes to complete the xarray entry split, it sets the xastate to -ENOMEM, which xasnomem then interprets as "Please allocate more memory"...

CVE-2022-49334

In the Linux kernel, the following vulnerability has been resolved: mm/hugememory: Fix xarray node memory leak If xassplitalloc fails to allocate the necessary nodes to complete the xarray entry split, it sets the xastate to -ENOMEM, which xasnomem then interprets as "Please allocate more memory"...

CVE-2022-49312 staging: rtl8712: fix a potential memory leak in r871xu_drv_init()

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8712: fix a potential memory leak in r871xudrvinit In r871xudrvinit, if r8712initdrvsw fails, then the memory allocated by r8712allocioqueue in r8712usbdvobjinit is not properly released as there is no action will be...

CVE-2022-49290 mac80211: fix potential double free on mesh join

In the Linux kernel, the following vulnerability has been resolved: mac80211: fix potential double free on mesh join While commit 6a01afcf8468 "mac80211: mesh: Free ie data when leaving mesh" fixed a memory leak on mesh leave / teardown it introduced a potential memory corruption caused by a doub...

CVE-2022-49276 jffs2: fix memory leak in jffs2_scan_medium

In the Linux kernel, the following vulnerability has been resolved: jffs2: fix memory leak in jffs2scanmedium If an error is returned in jffs2scaneraseblock and some memory has been added to the jffs2summary s, we can observe the following kmemleak report:...

CVE-2022-49256 watch_queue: Actually free the watch

In the Linux kernel, the following vulnerability has been resolved: watchqueue: Actually free the watch freewatch does everything barring actually freeing the watch object. Fix this by adding the missing kfree. kmemleak produces a report something like the following. Note that as an address can b...

CVE-2022-49225

In the Linux kernel, the following vulnerability has been resolved: mt76: mt7921s: fix a possible memory leak in mt7921loadpatch Always release fw data at the end of mt7921loadpatch routine...

CVE-2022-49207

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix memleak in skpsockqueuemsg If tcpbpfsendmsg is running during a tear down operation we may enqueue data on the ingress msg queue while tear down is trying to free it. sk1 redirect sk2 sk2 -------------------...

CVE-2022-49206

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix memory leak in error flow for subscribe event routine In case the second xainsert fails, the objevent is not released. Fix the error unwind flow to free that memory to avoid a memory leak...

CVE-2022-49188

In the Linux kernel, the following vulnerability has been resolved: remoteproc: qcomq6v5mss: Fix some leaks in q6v5allocmemoryregion The devicenode pointer is returned by ofparsephandle or ofgetchildbyname with refcount incremented. We should use ofnodeput on it when done. This function only call...

CVE-2022-49188 remoteproc: qcom_q6v5_mss: Fix some leaks in q6v5_alloc_memory_region

In the Linux kernel, the following vulnerability has been resolved: remoteproc: qcomq6v5mss: Fix some leaks in q6v5allocmemoryregion The devicenode pointer is returned by ofparsephandle or ofgetchildbyname with refcount incremented. We should use ofnodeput on it when done. This function only call...

CVE-2022-49188 remoteproc: qcom_q6v5_mss: Fix some leaks in q6v5_alloc_memory_region

In the Linux kernel, the following vulnerability has been resolved: remoteproc: qcomq6v5mss: Fix some leaks in q6v5allocmemoryregion The devicenode pointer is returned by ofparsephandle or ofgetchildbyname with refcount incremented. We should use ofnodeput on it when done. This function only call...

CVE-2022-49153 wireguard: socket: free skb in send6 when ipv6 is disabled

In the Linux kernel, the following vulnerability has been resolved: wireguard: socket: free skb in send6 when ipv6 is disabled I got a memory leak report: unreferenced object 0xffff8881191fc040 size 232: comm "kworker/u17:0", pid 23193, jiffies 4295238848 age 3464.870s hex dump first 32 bytes: 00...

CVE-2022-49122

CVE-2022-49122 is a Linux kernel vulnerability affecting the dm ioctl path where user-supplied data could act as an index and enable Spectre v1 gadget behavior. The fix, described in connected advisories, prevents leakage of kernel memory to userspace by applying array_index_nospec to index handl...

CVE-2022-49122 dm ioctl: prevent potential spectre v1 gadget

In the Linux kernel, the following vulnerability has been resolved: dm ioctl: prevent potential spectre v1 gadget It appears like cmd could be a Spectre v1 gadget as it's supplied by a user and used as an array index. Prevent the contents of kernel memory from being leaked to userspace via...

CVE-2022-49122

In the Linux kernel, the following vulnerability has been resolved: dm ioctl: prevent potential spectre v1 gadget It appears like cmd could be a Spectre v1 gadget as it's supplied by a user and used as an array index. Prevent the contents of kernel memory from being leaked to userspace via...

CVE-2022-49105 staging: wfx: fix an error handling in wfx_init_common()

In the Linux kernel, the following vulnerability has been resolved: staging: wfx: fix an error handling in wfxinitcommon One error handler of wfxinitcommon return without calling ieee80211freehwhw, which may result in memory leak. And I add one err label to unify the error handler, which is usefu...

CVE-2022-49067

CVE-2022-49067 is about a Linux kernel issue where virt_addr_valid() incorrectly returned true for vmalloc addresses in 64-bit Book3E (and related 32-bit behavior). Investigations across multiple advisories (NVD, Red Hat, Debian OSV, Unity/NASL/Nessus plugins) describe the root cause: __pa() can ...

CVE-2021-47655

In the Linux kernel, the following vulnerability has been resolved: media: venus: vdec: fixed possible memory leak issue The venushelperallocdpbbufs implementation allows an early return on an error path when checking the id from idaallocmin which would not release the earlier buffer allocation...

CVE-2021-47644 media: staging: media: zoran: move videodev alloc

In the Linux kernel, the following vulnerability has been resolved: media: staging: media: zoran: move videodev alloc Move some code out of zr36057init and create new functions for handling zr-videodev. This permit to ease code reading and fix a zr-videodev memory leak...