CVE-2022-49757

medium

Description

In the Linux kernel, the following vulnerability has been resolved: EDAC/highbank: Fix memory leak in highbank_mc_probe() When devres_open_group() fails, it returns -ENOMEM without freeing memory allocated by edac_mc_alloc(). Call edac_mc_free() on the error handling path to avoid a memory leak. [ bp: Massage commit message. ]

References

https://git.kernel.org/stable/c/f1b3e23ed8df87d779ee86ac37f379e79a24169a

https://git.kernel.org/stable/c/e7a293658c20a7945014570e1921bf7d25d68a36

https://git.kernel.org/stable/c/caffa7fed1397d1395052272c93900176de86557

https://git.kernel.org/stable/c/b7863ef8a8f0fee96b4eb41211f4918c0e047253

https://git.kernel.org/stable/c/8d23f5d25264beb223ee79cdb530b88c237719fc

https://git.kernel.org/stable/c/329fbd260352a7b9a83781d8b8bd96f95844a51f

https://git.kernel.org/stable/c/0db40e23b56d217eebd385bebb64057ef764b2c7

Details

Source: Mitre, NVD

Published: 2025-03-27

Updated: 2025-04-15

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00024