cvelistv5 - cve-2022-49866

cve-2022-49866

Vulnerability from cvelistv5

Published

2025-05-01 14:10

Modified

2025-05-01 14:10

Severity ?

Summary

net: wwan: mhi: fix memory leak in mhi_mbim_dellink

References

▼	URL	Tags
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/2845bc9070cef0c651987487d84d4813d64675dd
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/3cd3ffe952f78ec5dadf300cb58d4b38a0c0106d
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/668205b9c9f94d5ed6ab00cce9a46a654c2b5d16

Impacted products

▼	Vendor	Product
	Linux	Linux
	Linux	Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wwan/mhi_wwan_mbim.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "2845bc9070cef0c651987487d84d4813d64675dd",
              "status": "affected",
              "version": "aa730a9905b7b079ef2fffdab7f15dbb842f5c7c",
              "versionType": "git"
            },
            {
              "lessThan": "3cd3ffe952f78ec5dadf300cb58d4b38a0c0106d",
              "status": "affected",
              "version": "aa730a9905b7b079ef2fffdab7f15dbb842f5c7c",
              "versionType": "git"
            },
            {
              "lessThan": "668205b9c9f94d5ed6ab00cce9a46a654c2b5d16",
              "status": "affected",
              "version": "aa730a9905b7b079ef2fffdab7f15dbb842f5c7c",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wwan/mhi_wwan_mbim.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.15"
            },
            {
              "lessThan": "5.15",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.79",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.*",
              "status": "unaffected",
              "version": "6.0.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.1",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: wwan: mhi: fix memory leak in mhi_mbim_dellink\n\nMHI driver registers network device without setting the\nneeds_free_netdev flag, and does NOT call free_netdev() when\nunregisters network device, which causes a memory leak.\n\nThis patch sets needs_free_netdev to true when registers\nnetwork device, which makes netdev subsystem call free_netdev()\nautomatically after unregister_netdevice()."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-01T14:10:18.294Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/2845bc9070cef0c651987487d84d4813d64675dd"
        },
        {
          "url": "https://git.kernel.org/stable/c/3cd3ffe952f78ec5dadf300cb58d4b38a0c0106d"
        },
        {
          "url": "https://git.kernel.org/stable/c/668205b9c9f94d5ed6ab00cce9a46a654c2b5d16"
        }
      ],
      "title": "net: wwan: mhi: fix memory leak in mhi_mbim_dellink",
      "x_generator": {
        "engine": "bippy-1.1.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-49866",
    "datePublished": "2025-05-01T14:10:18.294Z",
    "dateReserved": "2025-05-01T14:05:17.237Z",
    "dateUpdated": "2025-05-01T14:10:18.294Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2022-49866\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2025-05-01T15:16:11.530\",\"lastModified\":\"2025-05-01T15:16:11.530\",\"vulnStatus\":\"Received\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nnet: wwan: mhi: fix memory leak in mhi_mbim_dellink\\n\\nMHI driver registers network device without setting the\\nneeds_free_netdev flag, and does NOT call free_netdev() when\\nunregisters network device, which causes a memory leak.\\n\\nThis patch sets needs_free_netdev to true when registers\\nnetwork device, which makes netdev subsystem call free_netdev()\\nautomatically after unregister_netdevice().\"}],\"metrics\":{},\"references\":[{\"url\":\"https://git.kernel.org/stable/c/2845bc9070cef0c651987487d84d4813d64675dd\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/3cd3ffe952f78ec5dadf300cb58d4b38a0c0106d\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/668205b9c9f94d5ed6ab00cce9a46a654c2b5d16\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}]}}"
  }
}

Action not permitted

cve-2022-49866

Vulnerability from cvelistv5

ghsa-32c5-q8cj-xx83

Vulnerability from github

Tags