CVE-2022-49836

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A possible memory leak in the Linux kernel has been resolved. The issue occurred in the siox device add() function when device register() returned an error. To fix this, put device() is called to free the allocated name in the error path, allowing the name to be freed in kobject cleanup() and the sdevice to be freed in siox device release().

Recommendations For the affected Linux kernel versions, to resolve the issue, ensure that put device() is called in the error path of siox device add() to properly free allocated resources. As a temporary workaround, consider reviewing and adjusting the error handling in siox device add() to prevent potential memory leaks until a formal patch is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.