CVE-2022-48965

Summary

In the Linux kernel, the following vulnerability has been resolved:

gpio/rockchip: fix refcount leak in rockchip_gpiolib_register()

The node returned by of_get_parent() with refcount incremented, of_node_put() needs be called when finish using it. So add it in the end of of_pinctrl_get().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux936ee2675eee1faca0dcdfa79165c7990422e0fc < 5cb8f1a784fd6115be58282fe15105572319d8beaffected
LinuxLinux936ee2675eee1faca0dcdfa79165c7990422e0fc < 033c79b7ee8a7bf1c1a13ac3addc91184425cbaeaffected
LinuxLinux936ee2675eee1faca0dcdfa79165c7990422e0fc < 63ff545af73f759d1bd04198af8ed8577fb739fcaffected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux5.15.83 <= 5.15.*unaffected
LinuxLinux6.0.13 <= 6.0.*unaffected
LinuxLinux6.1 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References