CVE-2022-49835

CVE-2022-49835 relates to the Linux kernel ALSA: hda subsystem where memory leaks could occur in add_widget_node due to how kobject_add allocates kobject->name and may not free the kobject on error. The root cause is failure to recycle resources when kobject_add fails, leading to a potential m...

CVE-2022-49259

The CVE-2022-49259 item concerns a Linux kernel bug where a kobject (queue) could be deleted before its child kobjects, triggering a kernel WARN. The vulnerability stems from improper deletion order in the sysfs/kobject lifecycle, leading to a possible sysfs group not found warning (e.g., 'sysfs...

CVE-2022-49224 power: supply: ab8500: Fix memory leak in ab8500_fg_sysfs_init

In the Linux kernel, the following vulnerability has been resolved: power: supply: ab8500: Fix memory leak in ab8500fgsysfsinit kobjectinitandadd takes reference even when it fails. According to the doc of kobjectinitandadd： If this function returns an error, kobjectput must be called to properly...

kernel: block: don't delete queue kobject before its children

In the Linux kernel, the following vulnerability has been resolved: block: don't delete queue kobject before its children kobjects aren't supposed to be deleted before their child kobjects are deleted. Apparently this is usually benign; however, a WARN will be triggered if one of the child kobjec...