In the Linux kernel, the following vulnerability has been resolved:
i2c: piix4: Fix a memory leak in the EFCH MMIO support
The recently added support for EFCH MMIO regions introduced a memory leak in that code path. The leak is caused by the fact that releaseresource() merely removes the resource from the tree but does not free its memory. We need to call releasemem_region() instead, which does free the memory. As a nice side effect, this brings back some symmetry between the legacy and MMIO paths.
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "11118736331903107305136152199473162296", "153706298176245263967994274119899681744", "257067732512732611501325148506972013639", "87350068920281945819519875647459932227", "328086606166073814994050414474182068629", "42043970916694242302224289600620299117", "242968651745227441095843682327942096982", "207036317281973816456412339475311983723", "290852121992831283255881800612765334778", "161886032344855139596401899628384923111", "79777217804027368651965730465627348704", "56399495227302690359652316992905596454", "199393635713753494903029567643390036190", "7473296554979719498957711185297981500", "221383615678547644347392383218323424818", "206147003501827334370668885901271233800", "328944327955310771629963887757359890900", "83237275695587451731631177942508488727", "66651703062666815093149749095628823884", "53203080847229896143767520763109475650", "113791930562298865886790423663811881210", "303763562808955284160680635640604745165", "247807235433798726078666790724321671993", "19557211368247956862629072916915250332", "245289581468815748341651307971675378294" ] }, "target": { "file": "drivers/i2c/busses/i2c-piix4.c" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8ad59b397f86a4d8014966fdc0552095a0c4fb2b", "signature_version": "v1", "id": "CVE-2022-49653-05971eab", "signature_type": "Line" }, { "digest": { "length": 216.0, "function_hash": "79194694176818921690798334481853346051" }, "target": { "file": "drivers/i2c/busses/i2c-piix4.c", "function": "piix4_sb800_region_release" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8ad59b397f86a4d8014966fdc0552095a0c4fb2b", "signature_version": "v1", "id": "CVE-2022-49653-11cfaaf6", "signature_type": "Function" }, { "digest": { "length": 811.0, "function_hash": "116836196664735279054450167651578867689" }, "target": { "file": "drivers/i2c/busses/i2c-piix4.c", "function": "piix4_sb800_region_request" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8ad59b397f86a4d8014966fdc0552095a0c4fb2b", "signature_version": "v1", "id": "CVE-2022-49653-1678a142", "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "11118736331903107305136152199473162296", "153706298176245263967994274119899681744", "257067732512732611501325148506972013639", "87350068920281945819519875647459932227", "328086606166073814994050414474182068629", "42043970916694242302224289600620299117", "242968651745227441095843682327942096982", "207036317281973816456412339475311983723", "290852121992831283255881800612765334778", "161886032344855139596401899628384923111", "79777217804027368651965730465627348704", "56399495227302690359652316992905596454", "199393635713753494903029567643390036190", "7473296554979719498957711185297981500", "221383615678547644347392383218323424818", "206147003501827334370668885901271233800", "328944327955310771629963887757359890900", "83237275695587451731631177942508488727", "66651703062666815093149749095628823884", "53203080847229896143767520763109475650", "113791930562298865886790423663811881210", "303763562808955284160680635640604745165", "247807235433798726078666790724321671993", "19557211368247956862629072916915250332", "245289581468815748341651307971675378294" ] }, "target": { "file": "drivers/i2c/busses/i2c-piix4.c" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d2bf1a6480e8d44658a8ac3bdcec081238873212", "signature_version": "v1", "id": "CVE-2022-49653-2060193c", "signature_type": "Line" }, { "digest": { "length": 811.0, "function_hash": "116836196664735279054450167651578867689" }, "target": { "file": "drivers/i2c/busses/i2c-piix4.c", "function": "piix4_sb800_region_request" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d2bf1a6480e8d44658a8ac3bdcec081238873212", "signature_version": "v1", "id": "CVE-2022-49653-2a4b4668", "signature_type": "Function" }, { "digest": { "length": 811.0, "function_hash": "116836196664735279054450167651578867689" }, "target": { "file": "drivers/i2c/busses/i2c-piix4.c", "function": "piix4_sb800_region_request" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a3263e4cf8265f0c9eb0ed8a9b50f132c7a42e19", "signature_version": "v1", "id": "CVE-2022-49653-52209509", "signature_type": "Function" }, { "digest": { "length": 216.0, "function_hash": "79194694176818921690798334481853346051" }, "target": { "file": "drivers/i2c/busses/i2c-piix4.c", "function": "piix4_sb800_region_release" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d2bf1a6480e8d44658a8ac3bdcec081238873212", "signature_version": "v1", "id": "CVE-2022-49653-a9cf4fcc", "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "11118736331903107305136152199473162296", "153706298176245263967994274119899681744", "257067732512732611501325148506972013639", "87350068920281945819519875647459932227", "328086606166073814994050414474182068629", "42043970916694242302224289600620299117", "242968651745227441095843682327942096982", "207036317281973816456412339475311983723", "290852121992831283255881800612765334778", "161886032344855139596401899628384923111", "79777217804027368651965730465627348704", "56399495227302690359652316992905596454", "199393635713753494903029567643390036190", "7473296554979719498957711185297981500", "221383615678547644347392383218323424818", "206147003501827334370668885901271233800", "328944327955310771629963887757359890900", "83237275695587451731631177942508488727", "66651703062666815093149749095628823884", "53203080847229896143767520763109475650", "113791930562298865886790423663811881210", "303763562808955284160680635640604745165", "247807235433798726078666790724321671993", "19557211368247956862629072916915250332", "245289581468815748341651307971675378294" ] }, "target": { "file": "drivers/i2c/busses/i2c-piix4.c" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a3263e4cf8265f0c9eb0ed8a9b50f132c7a42e19", "signature_version": "v1", "id": "CVE-2022-49653-ce791577", "signature_type": "Line" }, { "digest": { "length": 216.0, "function_hash": "79194694176818921690798334481853346051" }, "target": { "file": "drivers/i2c/busses/i2c-piix4.c", "function": "piix4_sb800_region_release" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a3263e4cf8265f0c9eb0ed8a9b50f132c7a42e19", "signature_version": "v1", "id": "CVE-2022-49653-d64f62a9", "signature_type": "Function" } ] }