Description

In the Linux kernel, the following vulnerability has been resolved: firmware_loader: Fix memory leak in firmware upload In the case of firmware-upload, an instance of struct fw_upload is allocated in firmware_upload_register(). This data needs to be freed in fw_dev_release(). Create a new fw_upload_free() function in sysfs_upload.c to handle the firmware-upload specific memory frees and incorporate the missing kfree call for the fw_upload structure.

INFO

Published Date :

2025-06-18T11:00:13.277Z

Last Modified :

2025-06-18T11:00:13.277Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-49949 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-49949.

URL Resource
https://git.kernel.org/stable/c/789bba82f63c3e81dce426ba457fc7905b30ac6e cve-icon cve-icon
https://git.kernel.org/stable/c/baf92485d111be828e1ab84a995515b604b938e5 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025061809-CVE-2022-49949-8fb5@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49949 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49949 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact