Memory Leak Vulnerability in DWC2 USB Driver for Linux Kernel
CVE-2022-49713

Currently unrated

Key Information:

Vendor
Linux
Status
Linux
Vendor
CVE Published:
26 February 2025

Summary

A memory leak vulnerability was identified in the DWC2 USB driver within the Linux kernel. When initializing the hardware, memory is allocated for the Host Controller Driver (HCD). However, if the platform resource retrieval fails, the corresponding memory is not released properly, leading to a potential accumulation of unreleased memory. A correction in the error handling flow has been implemented to ensure proper memory management and prevent this leak.

Affected Version(s)

Linux 4b7f4a0eb92bf37bea4cd838c7f83ea42823ca8b < 981ee40649e5fd9550f82db1fbb3bfab037da346

Linux a7182993dd8e09f96839ddc3ac54f9b37370d282 < 84e6d0af87e27bbc0db94f2e7323b34abe17b6e5

Linux 8b9c1c33e51d0959f2aec573dfbac0ffd3f5c0b7 < 6506aff2dc2f7059aa3d45ee2e8639b25e87090f

References

https://git.kernel.org/stable/c/981ee40649e5fd9550f82db1f...
https://git.kernel.org/stable/c/84e6d0af87e27bbc0db94f2e7...
https://git.kernel.org/stable/c/6506aff2dc2f7059aa3d45ee2...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.