CVE-2022-49821

mISDN: fix possible memory leak in mISDN_dsp_element_register()

Description

In the Linux kernel, the following vulnerability has been resolved: mISDN: fix possible memory leak in mISDN_dsp_element_register() Afer commit 1fa5ae857bb1 ("driver core: get rid of struct device's bus_id string array"), the name of device is allocated dynamically, use put_device() to give up the reference, so that the name can be freed in kobject_cleanup() when the refcount is 0. The 'entry' is going to be freed in mISDN_dsp_dev_release(), so the kfree() is removed. list_del() is called in mISDN_dsp_dev_release(), so it need be initialized.

N/A
CVSS
Severity:
EPSS 0.03%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/bbd53d05c4c892080ef3b617eff4f57903acecb9
https://git.kernel.org/stable/c/b119bedbefb7dd9ed8bf8cb9f1056504250d610e
https://git.kernel.org/stable/c/727ed7d28348c026c7ef4d852f3d0e5054d376e8
https://git.kernel.org/stable/c/0f2c681900a01e3f23789bca26d88268c3d5b51d
https://git.kernel.org/stable/c/083a2c9ef82e184bdf0b9f9a1e5fc38d32afbb47
https://git.kernel.org/stable/c/7a05e3929668c8cfef495c69752a9e91fac4878f
https://git.kernel.org/stable/c/d4b8394725079670be309f9a35ad88a8cbbaaefd
https://git.kernel.org/stable/c/98a2ac1ca8fd6eca6867726fe238d06e75eb1acd

Frequently Asked Questions

What is the severity of CVE-2022-49821?
CVE-2022-49821 has not yet been assigned a CVSS score.
How to fix CVE-2022-49821?
To fix CVE-2022-49821, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-49821 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2022-49821 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-49821?
CVE-2022-49821 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.