CVE-2022-48775

MEDIUM EPSS 13.3%
Published Jul 16, 20241y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Jul 16, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Fix memory leak in vmbus_add_channel_kobj kobject_init_and_add() takes reference even when it fails. According to the doc of kobject_init_and_add(): If this function returns an error, kobject_put() must be called to properly clean up the memory associated with the object. Fix memory leak by calling kobject_put().

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
13.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 5

VendorProductVersionRange
linuxlinux_kernel*≥4.15  –  <4.19.231
linuxlinux_kernel*≥4.20  –  <5.4.181
linuxlinux_kernel*≥5.5  –  <5.10.102
linuxlinux_kernel*≥5.11  –  <5.15.25
linuxlinux_kernel*≥5.16  –  <5.16.11

References 6

  • git.kernel.org https://git.kernel.org/stable/c/417947891bd5ae327f15efed1a0da2b12ef24962
    Mailing ListPatch
  • git.kernel.org https://git.kernel.org/stable/c/8bc69f86328e87a0ffa79438430cc82f3aa6a194
    Mailing ListPatch
  • git.kernel.org https://git.kernel.org/stable/c/91d8866ca55232d21995a3d54fac96de33c9e20c
    Mailing ListPatch
  • git.kernel.org https://git.kernel.org/stable/c/92e25b637cd4e010f776c86e4810300e773eac5c
    Mailing ListPatch
  • git.kernel.org https://git.kernel.org/stable/c/c377e2ba78d3fe9a1f0b4ec424e75f81da7e81e9
    Mailing ListPatch
  • git.kernel.org https://git.kernel.org/stable/c/fe595759c2a4a5bb41c438474f15947d8ae32f5c
    Mailing ListPatch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/417947891bd5ae327f15efed1a0da2b12ef24962
    Mailing ListPatch
  • git.kernel.org https://git.kernel.org/stable/c/8bc69f86328e87a0ffa79438430cc82f3aa6a194
    Mailing ListPatch
  • git.kernel.org https://git.kernel.org/stable/c/91d8866ca55232d21995a3d54fac96de33c9e20c
    Mailing ListPatch
  • git.kernel.org https://git.kernel.org/stable/c/92e25b637cd4e010f776c86e4810300e773eac5c
    Mailing ListPatch
  • git.kernel.org https://git.kernel.org/stable/c/c377e2ba78d3fe9a1f0b4ec424e75f81da7e81e9
    Mailing ListPatch
  • git.kernel.org https://git.kernel.org/stable/c/fe595759c2a4a5bb41c438474f15947d8ae32f5c
    Mailing ListPatch