CVE-2022-49714

Summary

In the Linux kernel, the following vulnerability has been resolved:

irqchip/realtek-rtl: Fix refcount leak in map_interrupts

of_find_node_by_phandle() returns a node pointer with refcount incremented, we should use of_node_put() on it when not need anymore. This function doesn't call of_node_put() in error path. Call of_node_put() directly after of_property_read_u32() to cover both normal path and error path.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux9f3a0f34b84ad1b9a8f2bdae44b66f16685b2143 < e85b1b797de0e7a271b906291ce28245822820b8affected
LinuxLinux9f3a0f34b84ad1b9a8f2bdae44b66f16685b2143 < f6d6223df0666fbc054e3a8c6ac14eb0af37c286affected
LinuxLinux9f3a0f34b84ad1b9a8f2bdae44b66f16685b2143 < eff4780f83d0ae3e5b6c02ff5d999dc4c1c5c8ceaffected
LinuxLinux5.12affected
LinuxLinux0 < 5.12unaffected
LinuxLinux5.15.49 <= 5.15.*unaffected
LinuxLinux5.18.6 <= 5.18.*unaffected
LinuxLinux5.19 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References