CVE-2022-49113
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
powerpc/secvar: fix refcount leak in format_show()
Refcount leak will happen when format_show returns failure in multiple cases. Unified management of of_node_put can fix this problem.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | bd5d9c743d38f67d64ea1b512a461f6b5a5f6bec < 02222bf4f0a27f6eba66d1f597cdb5daadd51829 | affected |
| Linux | Linux | bd5d9c743d38f67d64ea1b512a461f6b5a5f6bec < 2a71e3ecd829a82013cf095c55068c61d991e885 | affected |
| Linux | Linux | bd5d9c743d38f67d64ea1b512a461f6b5a5f6bec < c105ffb6b9744158e37e9f81f0f38861951d1c1f | affected |
| Linux | Linux | bd5d9c743d38f67d64ea1b512a461f6b5a5f6bec < d05e4265d33af60b39606c20c731e3e719bfe3d6 | affected |
| Linux | Linux | bd5d9c743d38f67d64ea1b512a461f6b5a5f6bec < d601fd24e6964967f115f036a840f4f28488f63f | affected |
| Linux | Linux | 5.5 | affected |
| Linux | Linux | 0 < 5.5 | unaffected |
| Linux | Linux | 5.10.111 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.34 <= 5.15.* | unaffected |
| Linux | Linux | 5.16.20 <= 5.16.* | unaffected |
| Linux | Linux | 5.17.3 <= 5.17.* | unaffected |
| Linux | Linux | 5.18 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/02222bf4f0a27f6eba66d1f597cdb5daadd51829
- https://git.kernel.org/stable/c/2a71e3ecd829a82013cf095c55068c61d991e885
- https://git.kernel.org/stable/c/c105ffb6b9744158e37e9f81f0f38861951d1c1f
- https://git.kernel.org/stable/c/d05e4265d33af60b39606c20c731e3e719bfe3d6
- https://git.kernel.org/stable/c/d601fd24e6964967f115f036a840f4f28488f63f
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.