PT-2025-18511 · Linux+2 · Linux Kernel+2

Published

2025-05-01

·

Updated

2025-07-10

·

CVE-2022-49794

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A memory leak issue has been identified in the Linux kernel, specifically in the at91 adc allocate trigger() function. This issue arises when iio trigger register() returns an error, and iio trigger free() is not called to release the reference held in iio trigger alloc(). As a result, memory is not freed when the reference count reaches 0.
Recommendations To resolve this issue, ensure that iio trigger free() is called when iio trigger register() returns an error, allowing iio trig release() to free memory when the reference count hits 0. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-401

Related Identifiers

CVE-2022-49794
SUSE-SU-2025:01918-1
SUSE-SU-2025:01966-1
SUSE-SU-2025:01982-1
SUSE-SU-2025:01995-1
SUSE-SU-2025:02173-1
SUSE-SU-2025:02262-1
SUSE-SU-2025:2173-1
SUSE-SU-2025_01982-1
SUSE-SU-2025_02173-1
SUSE-SU-2025_02262-1

Affected Products

Astra Linux
Linux Kernel
Suse