CVE-2022-49855

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2022-49855
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49855.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-49855
Downstream
Published
2025-05-01T14:10:09Z
Modified
2025-10-21T11:26:39.383958Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
net: wwan: iosm: fix memory leak in ipc_pcie_read_bios_cfg
Details

In the Linux kernel, the following vulnerability has been resolved:

net: wwan: iosm: fix memory leak in ipcpciereadbioscfg

ipcpciereadbioscfg() is using the acpievaluatedsm() to obtain the wwan power state configuration from BIOS but is not freeing the acpiobject. The acpievaluatedsm() returned acpiobject to be freed.

Free the acpi_object after use.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
7e98d785ae6184c7580a33619dae8b651769ff08
Fixed
13b1ea861e8aeb701bcfbfe436b943efa2d44029
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
7e98d785ae6184c7580a33619dae8b651769ff08
Fixed
7560ceef4d2832a67e8781d924e129c7f542376f
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
7e98d785ae6184c7580a33619dae8b651769ff08
Fixed
d38a648d2d6cc7bee11c6f533ff9426a00c2a74c

Affected versions

v5.*

v5.13
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.58
v5.15.59
v5.15.6
v5.15.60
v5.15.61
v5.15.62
v5.15.63
v5.15.64
v5.15.65
v5.15.66
v5.15.67
v5.15.68
v5.15.69
v5.15.7
v5.15.70
v5.15.71
v5.15.72
v5.15.73
v5.15.74
v5.15.75
v5.15.76
v5.15.77
v5.15.78
v5.15.8
v5.15.9
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8

v6.*

v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.0.1
v6.0.2
v6.0.3
v6.0.4
v6.0.5
v6.0.6
v6.0.7
v6.0.8
v6.1-rc1
v6.1-rc2
v6.1-rc3

Database specific

vanir_signatures

[
    {
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d38a648d2d6cc7bee11c6f533ff9426a00c2a74c",
        "deprecated": false,
        "id": "CVE-2022-49855-03f0e86b",
        "signature_type": "Function",
        "digest": {
            "length": 354.0,
            "function_hash": "288983219231046264510586154904116320277"
        },
        "target": {
            "function": "ipc_pcie_read_bios_cfg",
            "file": "drivers/net/wwan/iosm/iosm_ipc_pcie.c"
        }
    },
    {
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7560ceef4d2832a67e8781d924e129c7f542376f",
        "deprecated": false,
        "id": "CVE-2022-49855-67efc27e",
        "signature_type": "Function",
        "digest": {
            "length": 354.0,
            "function_hash": "288983219231046264510586154904116320277"
        },
        "target": {
            "function": "ipc_pcie_read_bios_cfg",
            "file": "drivers/net/wwan/iosm/iosm_ipc_pcie.c"
        }
    },
    {
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7560ceef4d2832a67e8781d924e129c7f542376f",
        "deprecated": false,
        "id": "CVE-2022-49855-75d20a66",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "159210503184399938984408528298542635807",
                "27607419658950538137731769846131381337",
                "39104098857310929134797604192177289382",
                "236572275438938006961782820023680166582",
                "59806426944574631596241523042489372893",
                "332302454987796325950691482404891579095",
                "322154004855519540616998754632654280761",
                "94672381569920081703091510584889924980",
                "161815852287557964253711668810682299781",
                "53495024210766628429923762057088759144",
                "104185908471992478640309528752150431584",
                "150886449682715706939529389806960734981"
            ]
        },
        "target": {
            "file": "drivers/net/wwan/iosm/iosm_ipc_pcie.c"
        }
    },
    {
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@13b1ea861e8aeb701bcfbfe436b943efa2d44029",
        "deprecated": false,
        "id": "CVE-2022-49855-803bad05",
        "signature_type": "Function",
        "digest": {
            "length": 354.0,
            "function_hash": "288983219231046264510586154904116320277"
        },
        "target": {
            "function": "ipc_pcie_read_bios_cfg",
            "file": "drivers/net/wwan/iosm/iosm_ipc_pcie.c"
        }
    },
    {
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d38a648d2d6cc7bee11c6f533ff9426a00c2a74c",
        "deprecated": false,
        "id": "CVE-2022-49855-9a030cba",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "159210503184399938984408528298542635807",
                "27607419658950538137731769846131381337",
                "39104098857310929134797604192177289382",
                "236572275438938006961782820023680166582",
                "59806426944574631596241523042489372893",
                "332302454987796325950691482404891579095",
                "322154004855519540616998754632654280761",
                "94672381569920081703091510584889924980",
                "161815852287557964253711668810682299781",
                "53495024210766628429923762057088759144",
                "104185908471992478640309528752150431584",
                "150886449682715706939529389806960734981"
            ]
        },
        "target": {
            "file": "drivers/net/wwan/iosm/iosm_ipc_pcie.c"
        }
    },
    {
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@13b1ea861e8aeb701bcfbfe436b943efa2d44029",
        "deprecated": false,
        "id": "CVE-2022-49855-ac5eb192",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "159210503184399938984408528298542635807",
                "27607419658950538137731769846131381337",
                "39104098857310929134797604192177289382",
                "236572275438938006961782820023680166582",
                "59806426944574631596241523042489372893",
                "332302454987796325950691482404891579095",
                "322154004855519540616998754632654280761",
                "94672381569920081703091510584889924980",
                "161815852287557964253711668810682299781",
                "53495024210766628429923762057088759144",
                "104185908471992478640309528752150431584",
                "150886449682715706939529389806960734981"
            ]
        },
        "target": {
            "file": "drivers/net/wwan/iosm/iosm_ipc_pcie.c"
        }
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.14.0
Fixed
5.15.79
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.0.9