CVE-2022-49231

MEDIUM

Linux kernel - Memory Corruption

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: rtw88: fix memory overrun and memory leak during hw_scan Previously we allocated less memory than actual required, overwrite to the buffer causes the mm module to complaint and raise access violation faults. Along with potential memory leaks when returned early. Fix these by passing the correct size and proper deinit flow.

References (2)

[Patch] https://git.kernel.org/stable/c/d95984b5580dcb8b1c0036577c52b609990a1dab

[Patch] https://git.kernel.org/stable/c/ec5da191bfcd5fd22b95459b623694f66c1cc10b

Scores

CVSS v3 5.5

EPSS 0.0004

EPSS Percentile 11.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-401

Status published

Affected Products (2)

linux/linux_kernel < 5.17.2

linux/Kernel < 5.17.2linux

Timeline

Published Feb 26, 2025

Tracked Since Feb 18, 2026