retired/CVE-2022-24959


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15

Description: yam: fix a memory leak in yam_siocdevprivate()
References:
Notes:
 bwh> Introduced in 4.19 by commit 0781168e23a2 "yam: fix a missing-
 bwh> check bug".  (That didn't actually fix any bug because the
 bwh> driver never looks at the second copy of the cmd field.)
Bugs:
upstream: released (5.17-rc2) [29eb31542787e1019208a2e1047bb7c76c069536]
5.10-upstream-stable: released (5.10.96) [729e54636b3ebefb77796702a5b1f1ed5586895e]
4.19-upstream-stable: released (4.19.228) [4bd197ce18329e3725fe3af5bd27daa4256d3ac7]
4.9-upstream-stable: N/A "Vulnerability introduced later"
sid: released (5.16.7-1)
5.10-bullseye-security: released (5.10.92-2) [bugfix/all/yam-fix-a-memory-leak-in-yam_siocdevprivate.patch]
4.19-buster-security: released (4.19.232-1)
4.9-stretch-security: N/A "Vulnerability introduced later"