CVE-2022-49893
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-49893
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49893.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-49893
- Downstream
- Published
- 2025-05-01T14:10:36Z
- Modified
- 2025-10-21T11:17:21.801116Z
- Summary
- cxl/region: Fix cxl_region leak, cleanup targets at region delete
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
cxl/region: Fix cxl_region leak, cleanup targets at region delete
When a region is deleted any targets that have been previously assigned to that region hold references to it. Trigger those references to drop by detaching all targets at unregister_region() time.
Otherwise that region object will leak as userspace has lost the ability to detach targets once region sysfs is torn down.
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedb9686e8c8e39d4072081ef078c04915ee51c8af4Fixed45d9fb4b758b9d602ee7776eb6754b0349946aad
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedb9686e8c8e39d4072081ef078c04915ee51c8af4Fixed0d9e734018d70cecf79e2e4c6082167160a0f13f
Affected versions
v5.*
v5.19
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.0.1
v6.0.2
v6.0.3
v6.0.4
v6.0.5
v6.0.6
v6.0.7
v6.1-rc1
Database specific
vanir_signatures
[
{
"id": "CVE-2022-49893-6de4e766",
"signature_type": "Function",
"signature_version": "v1",
"digest": {
"length": 139.0,
"function_hash": "163088961245890524308507713341015232092"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0d9e734018d70cecf79e2e4c6082167160a0f13f",
"target": {
"function": "unregister_region",
"file": "drivers/cxl/core/region.c"
}
},
{
"id": "CVE-2022-49893-7ce34a37",
"signature_type": "Line",
"signature_version": "v1",
"digest": {
"line_hashes": [
"294491500575342638466097091140604813186",
"228682449265697117578684858316825501095",
"112734919947460204156249036316830401361",
"139816823382471397247071563187572380001",
"286573281685703163749192416516685858280"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@45d9fb4b758b9d602ee7776eb6754b0349946aad",
"target": {
"file": "drivers/cxl/core/region.c"
}
},
{
"id": "CVE-2022-49893-ddde70b3",
"signature_type": "Function",
"signature_version": "v1",
"digest": {
"length": 139.0,
"function_hash": "163088961245890524308507713341015232092"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@45d9fb4b758b9d602ee7776eb6754b0349946aad",
"target": {
"function": "unregister_region",
"file": "drivers/cxl/core/region.c"
}
},
{
"id": "CVE-2022-49893-f5fd589b",
"signature_type": "Line",
"signature_version": "v1",
"digest": {
"line_hashes": [
"294491500575342638466097091140604813186",
"228682449265697117578684858316825501095",
"112734919947460204156249036316830401361",
"139816823382471397247071563187572380001",
"286573281685703163749192416516685858280"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0d9e734018d70cecf79e2e4c6082167160a0f13f",
"target": {
"file": "drivers/cxl/core/region.c"
}
}
]