CVE-2022-49676

Summary

In the Linux kernel, the following vulnerability has been resolved:

memory: samsung: exynos5422-dmc: Fix refcount leak in of_get_dram_timings

of_parse_phandle() returns a node pointer with refcount incremented, we should use of_node_put() on it when not need anymore. This function doesn't call of_node_put() in some error paths. To unify the structure, Add put_node label and goto it on errors.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux6e7674c3c6df565ab47d02b4f2e608e3477cdf86 < 889aad2203e09eed2071ca8985c25e9d6aea5735affected
LinuxLinux6e7674c3c6df565ab47d02b4f2e608e3477cdf86 < cde4480b5ab06195b9164184b0c02ced71e601b4affected
LinuxLinux6e7674c3c6df565ab47d02b4f2e608e3477cdf86 < bb2a481778c60f912c363e271ae46b55ff8132dbaffected
LinuxLinux6e7674c3c6df565ab47d02b4f2e608e3477cdf86 < 1332661e09304b7b8e84e5edc11811ba08d12abeaffected
LinuxLinux5.5affected
LinuxLinux0 < 5.5unaffected
LinuxLinux5.10.127 <= 5.10.*unaffected
LinuxLinux5.15.51 <= 5.15.*unaffected
LinuxLinux5.18.8 <= 5.18.*unaffected
LinuxLinux5.19 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References