2396110 – (CVE-2022-50355) CVE-2022-50355 kernel: staging: vt6655: fix some erroneous memory clean-up loops

Bug 2396110 (CVE-2022-50355) - CVE-2022-50355 kernel: staging: vt6655: fix some erroneous memory clean-up loops

Summary: CVE-2022-50355 kernel: staging: vt6655: fix some erroneous memory clean-up loops

Keywords:
Status:	NEW
Alias:	CVE-2022-50355
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-09-17 15:01 UTC by OSIDB Bzimport
Modified:	2025-11-26 10:29 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-09-17 15:01:51 UTC

In the Linux kernel, the following vulnerability has been resolved:

staging: vt6655: fix some erroneous memory clean-up loops

In some initialization functions of this driver, memory is allocated with
'i' acting as an index variable and increasing from 0. The commit in
"Fixes" introduces some clean-up codes in case of allocation failure,
which free memory in reverse order with 'i' decreasing to 0. However,
there are some problems:
  - The case i=0 is left out. Thus memory is leaked.
  - In case memory allocation fails right from the start, the memory
    freeing loops will start with i=-1 and invalid memory locations will
    be accessed.

One of these loops has been fixed in commit c8ff91535880 ("staging:
vt6655: fix potential memory leak"). Fix the remaining erroneous loops.

Comment 1 Keith Grant 2025-09-17 17:28:37 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025091714-CVE-2022-50355-11ce@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.