← volver
CVE-2022-49866

net: wwan: mhi: fix memory leak in mhi_mbim_dellink

CVSS 5.5 MEDIUMEPSS 0.2%CWE-401
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 5.5EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
01 may 2025Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
In the Linux kernel, the following vulnerability has been resolved: net: wwan: mhi: fix memory leak in mhi_mbim_dellink MHI driver registers network device without setting the needs_free_netdev flag, and does NOT call free_netdev() when unregisters network device, which causes a memory leak. This patch sets needs_free_netdev to true when registers network device, which makes netdev subsystem call free_netdev() automatically after unregister_netdevice().
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Productos afectados
Linux · Linux

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://git.kernel.org/stable/c/2845bc9070cef0c651987487d84d4813d64675ddhttps://git.kernel.org/stable/c/3cd3ffe952f78ec5dadf300cb58d4b38a0c0106dhttps://git.kernel.org/stable/c/668205b9c9f94d5ed6ab00cce9a46a654c2b5d16