2 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Firmware: RaspberryPi: A possible memory leak has been fixed in rpifirmwareprobe. In rpifirmwareprobe, if mboxrequestchannel fails, the 'fw' variable will not be freed through rpifirmwaredelete. This leak can be fixed by calling...
CVE-2022-50537
CVE-2022-50537 affects the Linux kernel through a memory-leak in the Raspberry Pi firmware path. The flaw occurs in rpi_firmware_probe(): when mbox_request_channel() fails, the allocated fw was not freed, leading to a leak. The fix, as described in the vulnerability notes, frees the fw via kfree(...