CVE-2022-48776

Published: Jul 16, 2024Modified: Sep 24, 2025

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: qcom: Fix missing free for pparts in cleanup Mtdpart doesn't free pparts when a cleanup function is declared. Add missing free for pparts in cleanup function for smem to fix the leak.

Affected (7)

Products: Linux: Linux Kernel

1 product

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 5.12.17 to 5.13
Linux Linux Kernel	From 5.13.2 to 5.15.25
Linux Linux Kernel	From 5.16 to 5.16.11
Linux Linux Kernel	Version 5.17 rc1
Linux Linux Kernel	Version 5.17 rc2
Linux Linux Kernel	Version 5.17 rc3
Linux Linux Kernel	Version 5.17 rc4

Related CWEs

Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

References (6)

https://git.kernel.org/stable/c/1b37889f9a151d26a3fb0d3870f6e1046dee2e24

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/3dd8ba961b9356c4113b96541c752c73d98fef70

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/3eb5185896a68373714dc7d0009111744adc3345

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/1b37889f9a151d26a3fb0d3870f6e1046dee2e24

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/3dd8ba961b9356c4113b96541c752c73d98fef70

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/3eb5185896a68373714dc7d0009111744adc3345

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.