VDB

CVE-2022-49855

CVE-2022-49855 PUBLISHED CVSS 5.5 MEDIUM

Reported by Linux · Published May 1, 2025

In the Linux kernel, the following vulnerability has been resolved: net: wwan: iosm: fix memory leak in ipc_pcie_read_bios_cfg ipc_pcie_read_bios_cfg() is using the acpi_evaluate_dsm() to obtain the wwan power state configuration from BIOS but is not freeing the acpi_object. The acpi_evaluate_dsm() returned acpi_object to be freed. Free the acpi_object after use.

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
LinuxLinux7e98d785ae6184c7580a33619dae8b651769ff08, 7e98d785ae6184c7580a33619dae8b651769ff08, 7e98d785ae6184c7580a33619dae8b651769ff08
LinuxLinux5.14, 0, 5.15.79
linuxlinux_kernel5.14, 5.14, 5.14
LinuxLinux7e98d785ae6184c7580a33619dae8b651769ff08, 7e98d785ae6184c7580a33619dae8b651769ff08, 7e98d785ae6184c7580a33619dae8b651769ff08

Timeline

  • May 1, 2025 CVE Published
  • May 2, 2025 EPSS Score
  • May 14, 2025 EPSS Score
  • May 26, 2025 EPSS Score
  • Jun 7, 2025 EPSS Score
  • Jun 18, 2025 EPSS Score
  • Jun 30, 2025 EPSS Score
  • Jul 12, 2025 EPSS Score
  • Jul 24, 2025 EPSS Score
  • Aug 5, 2025 EPSS Score
  • Aug 17, 2025 EPSS Score
  • Aug 29, 2025 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›