CVE-2022-49191

Source
https://nvd.nist.gov/vuln/detail/CVE-2022-49191
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49191.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-49191
Downstream
Related
Published
2025-02-26T07:00:56Z
Modified
2025-09-23T13:44:12Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

mxser: fix xmit_buf leak in activate when LSR == 0xff

When LSR is 0xff in ->activate() (rather unlike), we return an error. Provided ->shutdown() is not called when ->activate() fails, nothing actually frees the buffer in this case.

Fix this by properly freeing the buffer in a designated label. We jump there also from the "!info->type" if now too.

References

Affected packages