CVE-2022-49866

Description

In the Linux kernel, the following vulnerability has been resolved: net: wwan: mhi: fix memory leak in mhi_mbim_dellink MHI driver registers network device without setting the needs_free_netdev flag, and does NOT call free_netdev() when unregisters network device, which causes a memory leak. This patch sets needs_free_netdev to true when registers network device, which makes netdev subsystem call free_netdev() automatically after unregister_netdevice().

Reserved 2025-05-01 | Published 2025-05-01 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

aa730a9905b7b079ef2fffdab7f15dbb842f5c7c before 2845bc9070cef0c651987487d84d4813d64675dd
affected

aa730a9905b7b079ef2fffdab7f15dbb842f5c7c before 3cd3ffe952f78ec5dadf300cb58d4b38a0c0106d
affected

aa730a9905b7b079ef2fffdab7f15dbb842f5c7c before 668205b9c9f94d5ed6ab00cce9a46a654c2b5d16
affected

Default status
affected

5.15
affected

Any version before 5.15
unaffected

5.15.79
unaffected

6.0.9
unaffected

6.1
unaffected

References

git.kernel.org/...c/2845bc9070cef0c651987487d84d4813d64675dd

git.kernel.org/...c/3cd3ffe952f78ec5dadf300cb58d4b38a0c0106d

git.kernel.org/...c/668205b9c9f94d5ed6ab00cce9a46a654c2b5d16

cve.org (CVE-2022-49866)

nvd.nist.gov (CVE-2022-49866)

Download JSON