CVE-2022-48959 Information
Nov 01, 2024
cve
Description
In the Linux kernel the following vulnerability has been resolved:
net: dsa: sja1105: fix memory leak in sja1105_setup_devlink_regions()
When dsa_devlink_region_create failed in sja1105_setup_devlink_regions() priv->regions is not released.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Reference
https://git.kernel.org/stable/c/4be43e46c3f945fc7dd9e23c73a7a66927a3b814 https://git.kernel.org/stable/c/f3b5dda26cd0535aac09ed09c5d83f19b979ec9f https://git.kernel.org/stable/c/e5e59629654b8826f0167dae480d0e3fa0f8f038 https://git.kernel.org/stable/c/78a9ea43fc1a7c06a420b132d2d47cbf4344a5df
Attack Complexity
LOW
Privileges Required
LOW
User Interaction Required
LOW
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
NONE
Availability Impact
NONE
Base Score
HIGH
Base Severity
5.5
Share on: