CVE-2022-49095

scsi: zorro7xx: Fix a resource leak in zorro7xx_remove_one()

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: zorro7xx: Fix a resource leak in zorro7xx_remove_one() The error handling path of the probe releases a resource that is not freed in the remove function. In some cases, a ioremap() must be undone. Add the missing iounmap() call in the remove function.

N/A

CVSS

Severity:

EPSS 0.07%

Affected: Linux Linux

References

Link	Tags
https://git.kernel.org/stable/c/ce430cfad6a5385d5b7f7c1dc3fa50f10abfd41b
https://git.kernel.org/stable/c/1e0c01319dedf1e63ec5df37ead048e17afd92ba
https://git.kernel.org/stable/c/db863ab2baf058ed05c7b723612e3c40c9dd6885
https://git.kernel.org/stable/c/34a47f7ddb4fd1cbd12397aa6f7dad1de08b4050
https://git.kernel.org/stable/c/c5f77b595379b5191316edd365a542f8b1526066
https://git.kernel.org/stable/c/aefd755a96051aa56b198cb7ecd168b22ba384f6
https://git.kernel.org/stable/c/de6aee0978f164d3d0c771ce03e3066a26c371c5
https://git.kernel.org/stable/c/a845c678e094894f38cc9526d212b21933ce44c7
https://git.kernel.org/stable/c/16ed828b872d12ccba8f07bcc446ae89ba662f9c

Frequently Asked Questions

What is the severity of CVE-2022-49095?: CVE-2022-49095 has not yet been assigned a CVSS score.
How to fix CVE-2022-49095?: To fix CVE-2022-49095, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-49095 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2022-49095 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-49095?: CVE-2022-49095 affects Linux Linux, Linux Linux.

This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.