CVE-2022-48724: 
Linux Kernel vulnerability analysis and mitigation

CVE-2022-48724 is a memory leak vulnerability in the Linux kernel's IOMMU/VT-d implementation, specifically in the intelsetupirq_remapping() function. The vulnerability was discovered after commit e3beca48a45b and affects multiple versions of the Linux kernel from 4.14.190 through 5.17.rc2 (NVD).

The vulnerability occurs in the tear-down scenario where the firmware node (fn) is only freed after failing to allocate irdomain, but it should also be freed when dmarenableqi returns an error. Additionally, irqdomain and irmsidomain need to be properly removed if intelsetupirq_remapping fails to enable queued invalidation. The vulnerability has been assigned a CVSS v3.1 base score of 5.5 (Medium) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (NVD).

The vulnerability can lead to memory leaks in the Linux kernel's IOMMU/VT-d subsystem, potentially causing resource exhaustion and system instability. The issue affects the system's availability but does not impact confidentiality or integrity (NVD).

The vulnerability has been fixed by improving the rewinding path with the addition of outfreeirdomain and outfree_fwnode labels. The fix ensures proper cleanup of resources in error cases. Multiple patches have been released for different kernel versions to address this issue (Kernel Patch).