1223488 – (CVE-2022-48661) VUL-0: CVE-2022-48661: kernel: gpio: mockup: potential resource leakage when register a chip

Bug 1223488 (CVE-2022-48661) - VUL-0: CVE-2022-48661: kernel: gpio: mockup: potential resource leakage when register a chip

Summary: VUL-0: CVE-2022-48661: kernel: gpio: mockup: potential resource leakage when ...

Status:	RESOLVED FIXED

Alias:	CVE-2022-48661

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Minor
Target Milestone:	---
Assignee:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/403418/
Whiteboard:	CVSSv3.1:SUSE:CVE-2022-48661:3.3:(AV:...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2024-04-29 09:33 UTC by SMASH SMASH
Modified:	2024-06-07 13:46 UTC (History)
CC List:	2 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description SMASH SMASH 2024-04-29 09:33:20 UTC

In the Linux kernel, the following vulnerability has been resolved:

gpio: mockup: Fix potential resource leakage when register a chip

If creation of software node fails, the locally allocated string
array is left unfreed. Free it on error path.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-48661
https://www.cve.org/CVERecord?id=CVE-2022-48661
https://git.kernel.org/stable/c/02743c4091ccfb246f5cdbbe3f44b152d5d12933
https://git.kernel.org/stable/c/41f857033c44442a27f591fda8d986e7c9e42872
https://git.kernel.org/stable/c/9b26723e058faaf11b532fb4aa16d6849d581790
https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2022/CVE-2022-48661.mbox

Comment 3 Gabriele Sonnu 2024-06-07 13:46:01 UTC

All done, closing.