2 matches found
Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Firmware: RaspberryPi: Fixed a possible memory leak in rpifirmwareprobe. In rpifirmwareprobe, if mboxrequestchannel fails, the 'fw' variable will not be freed through rpifirmwaredelete. This leak can be fixed by calling kfree in...
CVE-2022-50537
CVE-2022-50537 affects the Linux kernel through a memory-leak in the Raspberry Pi firmware path. The flaw occurs in rpi_firmware_probe(): when mbox_request_channel() fails, the allocated fw was not freed, leading to a leak. The fix, as described in the vulnerability notes, frees the fw via kfree(...