Memory Leak Vulnerability in DWC2 USB Driver for Linux Kernel
CVE-2022-49713

5.5MEDIUM

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 26 February 2025

What is CVE-2022-49713?

A memory leak vulnerability was identified in the DWC2 USB driver within the Linux kernel. When initializing the hardware, memory is allocated for the Host Controller Driver (HCD). However, if the platform resource retrieval fails, the corresponding memory is not released properly, leading to a potential accumulation of unreleased memory. A correction in the error handling flow has been implemented to ensure proper memory management and prevent this leak.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 4b7f4a0eb92bf37bea4cd838c7f83ea42823ca8b < 981ee40649e5fd9550f82db1fbb3bfab037da346

Linux a7182993dd8e09f96839ddc3ac54f9b37370d282 < 84e6d0af87e27bbc0db94f2e7323b34abe17b6e5

Linux 8b9c1c33e51d0959f2aec573dfbac0ffd3f5c0b7 < 6506aff2dc2f7059aa3d45ee2e8639b25e87090f

References

https://git.kernel.org/stable/c/981ee40649e5fd9550f82db1f...

https://git.kernel.org/stable/c/84e6d0af87e27bbc0db94f2e7...

https://git.kernel.org/stable/c/6506aff2dc2f7059aa3d45ee2...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 26, 2025
Vulnerability Reserved
Feb 26, 2025

JSON

Linux

What is CVE-2022-49713?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.