CVE-2022-48881

Summary

In the Linux kernel, the following vulnerability has been resolved:

platform/x86/amd: Fix refcount leak in amd_pmc_probe

pci_get_domain_bus_and_slot() takes reference, the caller should release the reference by calling pci_dev_put() after use. Call pci_dev_put() in the error path to fix this.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux3d7d407dfb05b257e15cb0c6b056428a4a8c2e5d < 3944162821295993ec89992dec98ab6be6306cc0affected
LinuxLinux3d7d407dfb05b257e15cb0c6b056428a4a8c2e5d < ccb32e2be14271a60e9ba89c6d5660cc9998773caffected
LinuxLinux5.18affected
LinuxLinux0 < 5.18unaffected
LinuxLinux6.1.7 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References