Memory Leak Vulnerability in Linux Kernel's NFC Driver
CVE-2022-49729

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 26 February 2025

Summary

A memory leak issue was discovered in the NFC driver of the Linux kernel, specifically within the nfcmrvl component. The vulnerability arose due to improper handling when submitting deferred transmission URBs (USB Request Blocks) after unanchoring them. As a result, the system did not correctly release memory associated with these URBs, which could lead to excessive resource consumption. This issue has been addressed by implementing a fix that ensures deferred transmission URBs are properly managed and handled, effectively mitigating the risk of resource leaks.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1eb0afecfb9cd0f38424b82bd9aaa542310934ee

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 3e7c7df6991ac349f2fa8540047757df666e610f

References

https://git.kernel.org/stable/c/1eb0afecfb9cd0f38424b82bd...

https://git.kernel.org/stable/c/f21f908347712b8288ffe83b5...

https://git.kernel.org/stable/c/3e7c7df6991ac349f2fa85400...

Timeline

Vulnerability published
Feb 26, 2025
Vulnerability Reserved
Feb 26, 2025