CVE-2022-49821

MEDIUM EPSS 5.6%
Published May 1, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 1, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: mISDN: fix possible memory leak in mISDN_dsp_element_register() Afer commit 1fa5ae857bb1 ("driver core: get rid of struct device's bus_id string array"), the name of device is allocated dynamically, use put_device() to give up the reference, so that the name can be freed in kobject_cleanup() when the refcount is 0. The 'entry' is going to be freed in mISDN_dsp_dev_release(), so the kfree() is removed. list_del() is called in mISDN_dsp_dev_release(), so it need be initialized.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
5.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 12

VendorProductVersionRange
linuxlinux_kernel*≥2.6.30  –  <4.9.334
linuxlinux_kernel*≥4.10  –  <4.14.300
linuxlinux_kernel*≥4.15  –  <4.19.267
linuxlinux_kernel*≥4.20  –  <5.4.225
linuxlinux_kernel*≥5.5  –  <5.10.156
linuxlinux_kernel*≥5.11  –  <5.15.80
linuxlinux_kernel*≥5.16  –  <6.0.10
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/083a2c9ef82e184bdf0b9f9a1e5fc38d32afbb47
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/0f2c681900a01e3f23789bca26d88268c3d5b51d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/727ed7d28348c026c7ef4d852f3d0e5054d376e8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7a05e3929668c8cfef495c69752a9e91fac4878f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/98a2ac1ca8fd6eca6867726fe238d06e75eb1acd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b119bedbefb7dd9ed8bf8cb9f1056504250d610e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bbd53d05c4c892080ef3b617eff4f57903acecb9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d4b8394725079670be309f9a35ad88a8cbbaaefd
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/083a2c9ef82e184bdf0b9f9a1e5fc38d32afbb47
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/0f2c681900a01e3f23789bca26d88268c3d5b51d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/727ed7d28348c026c7ef4d852f3d0e5054d376e8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7a05e3929668c8cfef495c69752a9e91fac4878f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/98a2ac1ca8fd6eca6867726fe238d06e75eb1acd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b119bedbefb7dd9ed8bf8cb9f1056504250d610e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bbd53d05c4c892080ef3b617eff4f57903acecb9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d4b8394725079670be309f9a35ad88a8cbbaaefd
    Patch