CVE-2022-48859
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
net: marvell: prestera: Add missing of_node_put() in prestera_switch_set_base_mac_addr
This node pointer is returned by of_find_compatible_node() with refcount incremented. Calling of_node_put() to aovid the refcount leak.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 501ef3066c89d7f9045315e1be58749cf9e6814d < b7c2fd1d126329340639adfb8dd2938fe4b65df7 | affected |
| Linux | Linux | 501ef3066c89d7f9045315e1be58749cf9e6814d < 4cc66bf17220ff9631f9fa99b02a872e0ad5a08b | affected |
| Linux | Linux | 501ef3066c89d7f9045315e1be58749cf9e6814d < c9ffa3e2bc451816ce0295e40063514fabf2bd36 | affected |
| Linux | Linux | 5.10 | affected |
| Linux | Linux | 0 < 5.10 | unaffected |
| Linux | Linux | 5.15.29 <= 5.15.* | unaffected |
| Linux | Linux | 5.16.15 <= 5.16.* | unaffected |
| Linux | Linux | 5.17 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/b7c2fd1d126329340639adfb8dd2938fe4b65df7
- https://git.kernel.org/stable/c/4cc66bf17220ff9631f9fa99b02a872e0ad5a08b
- https://git.kernel.org/stable/c/c9ffa3e2bc451816ce0295e40063514fabf2bd36
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/b7c2fd1d126329340639adfb8dd2938fe4b65df7
- https://git.kernel.org/stable/c/4cc66bf17220ff9631f9fa99b02a872e0ad5a08b
- https://git.kernel.org/stable/c/c9ffa3e2bc451816ce0295e40063514fabf2bd36
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.