Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling Error paths do not free previously allocated memory. Add devm_kfree() to those failure paths.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 4.0, < 4.9.318 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/3eca2c42daa4659965db6817479027cbc6df7899Patch
- https://git.kernel.org/stable/c/54423649bc0ed464b75807a7cf2857a5871f738fPatch
- https://git.kernel.org/stable/c/55904086041ba4ee4070187b36590f8f8d6df4cdPatch
- https://git.kernel.org/stable/c/593773088d615a46a42c97e01a0550d192bb7f74Patch
- https://git.kernel.org/stable/c/6fce324b530dd74750ad870699e33eeed1029dedPatch
- https://git.kernel.org/stable/c/996419e0594abb311fb958553809f24f38e7abbePatch
- https://git.kernel.org/stable/c/d221ce54ce331c1a23be71eebf57f6a088632383Patch
- https://git.kernel.org/stable/c/db836b97464d44340b568e041fd24602858713f7Patch
- https://git.kernel.org/stable/c/f444ecd3f57f4ba5090fe8b6756933e37de4226ePatch
FAQ
What is CVE-2022-49331?
CVE-2022-49331 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling Error paths do not free previously allocated memory. Add devm_kfree() ...
How severe is CVE-2022-49331?
CVE-2022-49331 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-49331?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.