CVE-2022-50055
In the Linux kernel, the following vulnerability has been resolved:
iavf: Fix adminq error handling
iavf_alloc_asq_bufs/iavf_alloc_arq_bufs allocates with dma_alloc_coherent memory for VF mailbox. Free DMA regions for both ASQ and ARQ in case error happens during configuration of ASQ/ARQ registers. Without this change it is possible to see when unloading interface: 74626.583369: dma_debug_device_change: device driver has pending DMA allocations while released from device [count=32] One of leaked entries details: [device address=0x0000000b27ff9000] [size=4096 bytes] [mapped with DMA_BIDIRECTIONAL] [mapped as coherent]
| Software | From | Fixed in |
|---|---|---|
| linux / linux_kernel | 3.14 | 5.4.211 |
| linux / linux_kernel | 5.5 | 5.10.138 |
| linux / linux_kernel | 5.11 | 5.15.63 |
| linux / linux_kernel | 5.16 | 5.19.4 |
| linux / linux_kernel | 6.0-rc1 | 6.0-rc1.x |
- https://git.kernel.org/stable/c/35c63581fdefdcbaeae8cded18908523252353ad
- https://git.kernel.org/stable/c/419831617ed349992c84344dbd9e627f9e68f842
- https://git.kernel.org/stable/c/4fe80492d53971d9a49f39f3c86d2d67c6f3638a
- https://git.kernel.org/stable/c/dab6b551f5ba4c79a0dd4970dd8533c37a7b100f
- https://git.kernel.org/stable/c/ff289f2be5899efd0e897d2b434a78e36df2c69b
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime