CVE-2022-49794 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: iio: adc: at91_adc: fix possible memory leak in at91_adc_allocate_trigger() If iio_trigger_register() returns error, it should call iio_trigger_free() to give up the reference that hold in iio_trigger_alloc(), so that it can call iio_trig_release() to free memory when the refcount hit to 0.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

References

Link	Providers
https://git.kernel.org/stable/c/1bf8c0aff8fb5c4edf3ba6728e6bedbd610d7f4b
https://git.kernel.org/stable/c/2b29a7f2d52fb5281b30cf61c947d88bab18a29b
https://git.kernel.org/stable/c/65f20301607d07ee279b0804d11a05a62a6c1a1c
https://git.kernel.org/stable/c/7b75515728b628a9a7540f201efdeb8ca7299385
https://git.kernel.org/stable/c/85d2a8b287a89853c0dcfc5a97b5e9d36376fe37
https://git.kernel.org/stable/c/a0d98ae5a62a7bbad8fcf9fa22e0a1274197bbc4
https://git.kernel.org/stable/c/c27a3b6ba23350708cf5ab9962337447b51eb76d
https://git.kernel.org/stable/c/c3ce73f60599a483dca7becd4112508833a40ef9
https://lore.kernel.org/linux-cve-announce/2025050123-CVE-2022-49794-3f00@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2022-49794
https://www.cve.org/CVERecord?id=CVE-2022-49794

History

Fri, 02 May 2025 14:00:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025050123-CVE-2022-49794-3f00@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2022-49794 https://www.cve.org/CVERecord?id=CVE-2022-49794
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Moderate`

Thu, 01 May 2025 14:30:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: iio: adc: at91_adc: fix possible memory leak in at91_adc_allocate_trigger() If iio_trigger_register() returns error, it should call iio_trigger_free() to give up the reference that hold in iio_trigger_alloc(), so that it can call iio_trig_release() to free memory when the refcount hit to 0.
Title		iio: adc: at91_adc: fix possible memory leak in at91_adc_allocate_trigger()
References		https://git.kernel.org/stable/c/1bf8c0aff8fb5c4edf3ba6728e6bedbd610d7f4b https://git.kernel.org/stable/c/2b29a7f2d52fb5281b30cf61c947d88bab18a29b https://git.kernel.org/stable/c/65f20301607d07ee279b0804d11a05a62a6c1a1c https://git.kernel.org/stable/c/7b75515728b628a9a7540f201efdeb8ca7299385 https://git.kernel.org/stable/c/85d2a8b287a89853c0dcfc5a97b5e9d36376fe37 https://git.kernel.org/stable/c/a0d98ae5a62a7bbad8fcf9fa22e0a1274197bbc4 https://git.kernel.org/stable/c/c27a3b6ba23350708cf5ab9962337447b51eb76d https://git.kernel.org/stable/c/c3ce73f60599a483dca7becd4112508833a40ef9

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-05-01T14:09:25.124Z

Updated: 2025-05-04T08:45:30.350Z

Reserved: 2025-05-01T14:05:17.224Z

Link: CVE-2022-49794

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-05-01T15:16:02.673

Modified: 2025-05-02T13:53:20.943

Link: CVE-2022-49794

Redhat

Severity : Moderate

Publid Date: 2025-05-01T00:00:00Z

Links: CVE-2022-49794 - Bugzilla

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object