Ubuntu: (CVE-2022-48724): linux vulnerability

Ubuntu: (CVE-2022-48724): linux vulnerability

Severity

5

CVSS

(AV:L/AC:L/Au:S/C:N/I:N/A:C)

Published

06/20/2024

Created

11/21/2024

Added

11/19/2024

Modified

02/11/2025

Description

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix potential memory leak in intel_setup_irq_remapping() After commit e3beca48a45b ("irqdomain/treewide: Keep firmware node unconditionally allocated"). For tear down scenario, fn is only freed after fail to allocate ir_domain, though it also should be freed in case dmar_enable_qi returns error. Besides free fn, irq_domain and ir_msi_domain need to be removed as well if intel_setup_irq_remapping fails to enable queued invalidation. Improve the rewinding path by add out_free_ir_domain and out_free_fwnode lables per Baolu's suggestion.

Solution(s)

• ubuntu-upgrade-linux
• ubuntu-upgrade-linux-aws
• ubuntu-upgrade-linux-aws-5-4
• ubuntu-upgrade-linux-aws-fips
• ubuntu-upgrade-linux-aws-hwe
• ubuntu-upgrade-linux-azure
• ubuntu-upgrade-linux-azure-4-15
• ubuntu-upgrade-linux-azure-5-4
• ubuntu-upgrade-linux-azure-fips
• ubuntu-upgrade-linux-bluefield
• ubuntu-upgrade-linux-fips
• ubuntu-upgrade-linux-gcp
• ubuntu-upgrade-linux-gcp-4-15
• ubuntu-upgrade-linux-gcp-5-4
• ubuntu-upgrade-linux-gcp-fips
• ubuntu-upgrade-linux-gkeop
• ubuntu-upgrade-linux-hwe
• ubuntu-upgrade-linux-hwe-5-4
• ubuntu-upgrade-linux-ibm
• ubuntu-upgrade-linux-ibm-5-4
• ubuntu-upgrade-linux-intel-iotg-5-15
• ubuntu-upgrade-linux-iot
• ubuntu-upgrade-linux-kvm
• ubuntu-upgrade-linux-oracle
• ubuntu-upgrade-linux-oracle-5-4
• ubuntu-upgrade-linux-raspi
• ubuntu-upgrade-linux-raspi-5-4

References

• https://attackerkb.com/topics/cve-2022-48724
• CVE - 2022-48724
• https://git.kernel.org/linus/99e675d473eb8cf2deac1376a0f840222fc1adcf
• https://git.kernel.org/stable/c/336d096b62bdc673e852b6b80d5072d7888ce85d
• https://git.kernel.org/stable/c/5c43d46daa0d2928234dd2792ebebc35d29ee2d1
• https://git.kernel.org/stable/c/99e675d473eb8cf2deac1376a0f840222fc1adcf
• https://git.kernel.org/stable/c/9d9995b0371e4e8c18d4f955479e5d47efe7b2d4
• https://git.kernel.org/stable/c/a0c685ba99961b1dd894b2e470e692a539770f6d
• https://git.kernel.org/stable/c/a31cb1f0fb6caf46ffe88c41252b6b7a4ee062d9
• https://git.kernel.org/stable/c/b62eceb5f8f08815fe3f945fc55bbf997c344ecd
• https://www.cve.org/CVERecord?id=CVE-2022-48724

View more