CVE-2022-49693

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/msm/mdp4: Fix refcount leak in mdp4_modeset_init_intf

of_graph_get_remote_node() returns remote device node pointer with refcount incremented, we should use of_node_put() on it when not need anymore. Add missing of_node_put() to avoid refcount leak.

Patchwork: https://patchwork.freedesktop.org/patch/488473/

Affected Software

VendorProductVersion RangeStatus
LinuxLinux86418f90a4c1a0073db65d8a1e2bf94421117a60 < d1592d3e362cc59b29f15019707b16c695d70ca3affected
LinuxLinux86418f90a4c1a0073db65d8a1e2bf94421117a60 < d16a4339825e64f9ddcdff5277982d640bae933baffected
LinuxLinux86418f90a4c1a0073db65d8a1e2bf94421117a60 < 3c39a17197733bc37786ed68c83267c2f491840baffected
LinuxLinux86418f90a4c1a0073db65d8a1e2bf94421117a60 < d607da76fd2b1cf1d377af9d9b7c6f8fecbb0e1daffected
LinuxLinux86418f90a4c1a0073db65d8a1e2bf94421117a60 < b9cc4598607cb7f7eae5c75fc1e3209cd52ff5e0affected
LinuxLinux4.12affected
LinuxLinux0 < 4.12unaffected
LinuxLinux5.4.202 <= 5.4.*unaffected
LinuxLinux5.10.127 <= 5.10.*unaffected
LinuxLinux5.15.51 <= 5.15.*unaffected
LinuxLinux5.18.8 <= 5.18.*unaffected
LinuxLinux5.19 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References