CVE-2022-48722

medium

Description

In the Linux kernel, the following vulnerability has been resolved: net: ieee802154: ca8210: Stop leaking skb's Upon error the ieee802154_xmit_complete() helper is not called. Only ieee802154_wake_queue() is called manually. We then leak the skb structure. Free the skb structure upon error before returning.

References

https://git.kernel.org/stable/c/d6a44feb2f28d71a7e725f72d09c97c81561cd9a

https://git.kernel.org/stable/c/a1c277b0ed2a13e7de923b5f03bc23586eceb851

https://git.kernel.org/stable/c/94cd597e20ed4acedb8f15f029d92998b011cb1a

https://git.kernel.org/stable/c/78b3f20c17cbcb7645bfa63f2ca0e11b53c09d56

https://git.kernel.org/stable/c/6f38d3a6ec11c2733b1c641a46a2a2ecec57be08

https://git.kernel.org/stable/c/621b24b09eb61c63f262da0c9c5f0e93348897e5

https://git.kernel.org/stable/c/21feb6df3967541931242c427fe0958276af81cc

Details

Source: Mitre, NVD

Published: 2024-06-20

Updated: 2024-06-20

Risk Information

CVSS v2

Base Score: 3.8

Vector: CVSS2#AV:L/AC:H/Au:S/C:N/I:N/A:C

Severity: Low

CVSS v3

Base Score: 4.7

Vector: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium