CVE-2022-48863

Published: Jul 16, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: mISDN: Fix memory leak in dsp_pipeline_build() dsp_pipeline_build() allocates dup pointer by kstrdup(cfg), but then it updates dup variable by strsep(&dup, "|"). As a result when it calls kfree(dup), the dup variable contains NULL. Found by Linux Driver Verification project (linuxtesting.org) with SVACE.

Vendor	Product	Versions
Linux	Linux	affected `960366cf8dbb3359afaca30cf7fdbf69a6d6dda7 - < a3d5fcc6cf2ecbba5a269631092570aa285a24cb` affected `960366cf8dbb3359afaca30cf7fdbf69a6d6dda7 - < 7777b1f795af1bb43867375d8a776080111aae1b` affected `960366cf8dbb3359afaca30cf7fdbf69a6d6dda7 - < 640445d6fc059d4514ffea79eb4196299e0e2d0f` affected `960366cf8dbb3359afaca30cf7fdbf69a6d6dda7 - < c6a502c2299941c8326d029cfc8a3bc8a4607ad5`
Linux	Linux	affected `2.6.27` unaffected `0 - < 2.6.27` unaffected `5.10.106 - <= 5.10.` unaffected `5.15.29 - <= 5.15.` unaffected `5.16.15 - <= 5.16.*` +1 more versions

References

https://git.kernel.org/stable/c/a3d5fcc6cf2ecbba5a269631092570aa285a24cb

https://git.kernel.org/stable/c/7777b1f795af1bb43867375d8a776080111aae1b

https://git.kernel.org/stable/c/640445d6fc059d4514ffea79eb4196299e0e2d0f

https://git.kernel.org/stable/c/c6a502c2299941c8326d029cfc8a3bc8a4607ad5

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-48863

Description

Affected Products

References