CVE-2022-48893

MEDIUM

Linux Kernel - Resource Leak via Incomplete Engine Discovery Cleanup

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/i915/gt: Cleanup partial engine discovery failures If we abort driver initialisation in the middle of gt/engine discovery, some engines will be fully setup and some not. Those incompletely setup engines only have 'engine->release == NULL' and so will leak any of the common objects allocated. v2: - Drop the destroy_pinned_context() helper for now. It's not really worth it with just a single callsite at the moment. (Janusz)

References (5)

Core 5

Core References

Mailing List

https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html

Patch

https://git.kernel.org/stable/c/78350c36fb15afef423404a83dcbc5c558dce795

Patch

https://git.kernel.org/stable/c/7d21587d35bc816c85a51b8686f0f7e8e676fb14

Patch

https://git.kernel.org/stable/c/5c855bcc730656c4b7d30aaddcd0eafc7003e112

Patch

https://git.kernel.org/stable/c/78a033433a5ae4fee85511ee075bc9a48312c79e

Scores

CVSS v3 5.5

EPSS 0.0024

EPSS Percentile 14.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-459

Status published

Products (14)

linux/Kernel 5.11.0 - 5.15.181linux

linux/Kernel 5.16.0 - 6.1.7linux

linux/Kernel 5.6.0 - 5.10.237linux

Linux/Linux < 5.6

Linux/Linux 5.10.237 - 5.10.*

Linux/Linux 5.15.181 - 5.15.*

Linux/Linux 5.6

Linux/Linux 6.1.7 - 6.1.*

Linux/Linux 6.2

Linux/Linux 7d70a1233d11ce9286e1a04c4f1bcd263e3e405e - 5c855bcc730656c4b7d30aaddcd0eafc7003e112

... and 4 more

Published Aug 21, 2024

Tracked Since Feb 18, 2026