CVE-2022-49028

medium

Description

In the Linux kernel, the following vulnerability has been resolved: ixgbevf: Fix resource leak in ixgbevf_init_module() ixgbevf_init_module() won't destroy the workqueue created by create_singlethread_workqueue() when pci_register_driver() failed. Add destroy_workqueue() in fail path to prevent the resource leak. Similar to the handling of u132_hcd_init in commit f276e002793c ("usb: u132-hcd: fix resource leak")

References

https://git.kernel.org/stable/c/f166c62cad798c53300b4b327e44300c73ec492d

https://git.kernel.org/stable/c/c99671d4699dcf90d6939923c8fe8a8918e140b2

https://git.kernel.org/stable/c/8cfa238a48f34038464b99d0b4825238c2687181

https://git.kernel.org/stable/c/7109e941099244cc876a4b3cb7a3ec79f104374a

Details

Source: Mitre, NVD

Published: 2024-10-21

Updated: 2024-10-24

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium