CVE-2022-49906
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-49906
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49906.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-49906
- Downstream
- Related
- Published
- 2025-05-01T14:10:50Z
- Modified
- 2025-10-21T11:31:42.101129Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- ibmvnic: Free rwi on reset success
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ibmvnic: Free rwi on reset success
Free the rwi structure in the event that the last rwi in the list processed successfully. The logic in commit 4f408e1fa6e1 ("ibmvnic: retry reset if there are no other resets") introduces an issue that results in a 32 byte memory leak whenever the last rwi in the list gets processed.
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced4f408e1fa6e10b6da72691233369172bac7d9e9bFixed535b78739ae75f257c894a05b1afa86ad9a3669e
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced4f408e1fa6e10b6da72691233369172bac7d9e9bFixedc3543a287cfba9105dcc4bb41eb817f51266caaf
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced4f408e1fa6e10b6da72691233369172bac7d9e9bFixedd6dd2fe71153f0ff748bf188bd4af076fe09a0a6
Affected versions
v5.*
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.58
v5.15.59
v5.15.6
v5.15.60
v5.15.61
v5.15.62
v5.15.63
v5.15.64
v5.15.65
v5.15.66
v5.15.67
v5.15.68
v5.15.69
v5.15.7
v5.15.70
v5.15.71
v5.15.72
v5.15.73
v5.15.74
v5.15.75
v5.15.76
v5.15.77
v5.15.8
v5.15.9
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.0.1
v6.0.2
v6.0.3
v6.0.4
v6.0.5
v6.0.6
v6.0.7
v6.1-rc1
v6.1-rc2
Database specific
vanir_signatures
[
{
"deprecated": false,
"id": "CVE-2022-49906-31b3232a",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c3543a287cfba9105dcc4bb41eb817f51266caaf",
"digest": {
"line_hashes": [
"88923766897890596380364611190966129056",
"157714957184134193984840477852697403680",
"246078991161648760058323033647850509655",
"218137976550240243017936745307141940209",
"331360734926900217813029542142825536130",
"8424797681521213956451078262563068834",
"214638120240027504600283297026344158681"
],
"threshold": 0.9
},
"target": {
"file": "drivers/net/ethernet/ibm/ibmvnic.c"
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"id": "CVE-2022-49906-3ff4677d",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@535b78739ae75f257c894a05b1afa86ad9a3669e",
"digest": {
"line_hashes": [
"88923766897890596380364611190966129056",
"157714957184134193984840477852697403680",
"246078991161648760058323033647850509655",
"218137976550240243017936745307141940209",
"331360734926900217813029542142825536130",
"8424797681521213956451078262563068834",
"214638120240027504600283297026344158681"
],
"threshold": 0.9
},
"target": {
"file": "drivers/net/ethernet/ibm/ibmvnic.c"
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"id": "CVE-2022-49906-ba61fd1f",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d6dd2fe71153f0ff748bf188bd4af076fe09a0a6",
"digest": {
"function_hash": "307714745341878401964536929755902954005",
"length": 2602.0
},
"target": {
"function": "__ibmvnic_reset",
"file": "drivers/net/ethernet/ibm/ibmvnic.c"
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"deprecated": false,
"id": "CVE-2022-49906-c5e469d6",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d6dd2fe71153f0ff748bf188bd4af076fe09a0a6",
"digest": {
"line_hashes": [
"88923766897890596380364611190966129056",
"157714957184134193984840477852697403680",
"246078991161648760058323033647850509655",
"218137976550240243017936745307141940209",
"331360734926900217813029542142825536130",
"8424797681521213956451078262563068834",
"214638120240027504600283297026344158681"
],
"threshold": 0.9
},
"target": {
"file": "drivers/net/ethernet/ibm/ibmvnic.c"
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"id": "CVE-2022-49906-e105d531",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c3543a287cfba9105dcc4bb41eb817f51266caaf",
"digest": {
"function_hash": "307714745341878401964536929755902954005",
"length": 2602.0
},
"target": {
"function": "__ibmvnic_reset",
"file": "drivers/net/ethernet/ibm/ibmvnic.c"
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"deprecated": false,
"id": "CVE-2022-49906-fce183be",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@535b78739ae75f257c894a05b1afa86ad9a3669e",
"digest": {
"function_hash": "307714745341878401964536929755902954005",
"length": 2602.0
},
"target": {
"function": "__ibmvnic_reset",
"file": "drivers/net/ethernet/ibm/ibmvnic.c"
},
"signature_type": "Function",
"signature_version": "v1"
}
]