CVE-2022-49719

Summary

In the Linux kernel, the following vulnerability has been resolved:

irqchip/gic/realview: Fix refcount leak in realview_gic_of_init

of_find_matching_node_and_match() returns a node pointer with refcount incremented, we should use of_node_put() on it when not need anymore. Add missing of_node_put() to avoid refcount leak.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux82b0a434b436f5da69ddd24bd6a6fa5dc4484310 < 87da903ce632d5689bef66d56ee5dae700d82104affected
LinuxLinux82b0a434b436f5da69ddd24bd6a6fa5dc4484310 < 486f68f85085d9b16ae097679b1486dcb1b6eb69affected
LinuxLinux82b0a434b436f5da69ddd24bd6a6fa5dc4484310 < b634af84bc1edece4e63317b0ad95618dd3a8693affected
LinuxLinux82b0a434b436f5da69ddd24bd6a6fa5dc4484310 < 56526c3883fc7a1f5898b1d40a02c8b8685a5d92affected
LinuxLinux82b0a434b436f5da69ddd24bd6a6fa5dc4484310 < e52a58b79f11755ea7e877015c4a1704303fa55faffected
LinuxLinux82b0a434b436f5da69ddd24bd6a6fa5dc4484310 < 5d38720661a4b9c87705c206a6081177ffb8ec1daffected
LinuxLinux82b0a434b436f5da69ddd24bd6a6fa5dc4484310 < 16b603cb8d34c2d917983918db1f88c8b831baaaaffected
LinuxLinux82b0a434b436f5da69ddd24bd6a6fa5dc4484310 < f4b98e314888cc51486421bcf6d52852452ea48baffected
LinuxLinux4.6affected
LinuxLinux0 < 4.6unaffected
LinuxLinux4.9.320 <= 4.9.*unaffected
LinuxLinux4.14.285 <= 4.14.*unaffected
LinuxLinux4.19.249 <= 4.19.*unaffected
LinuxLinux5.4.200 <= 5.4.*unaffected
LinuxLinux5.10.124 <= 5.10.*unaffected
LinuxLinux5.15.49 <= 5.15.*unaffected
LinuxLinux5.18.6 <= 5.18.*unaffected
LinuxLinux5.19 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References