CVE-2022-50017

Summary

In the Linux kernel, the following vulnerability has been resolved:

mips: cavium-octeon: Fix missing of_node_put() in octeon2_usb_clocks_start

We should call of_node_put() for the reference 'uctl_node' returned by of_get_parent() which will increase the refcount. Otherwise, there will be a refcount leak bug.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxa95cfa6b86a19a822877e75d5a73b2a95d249e70 < 9d1afa0169a84dcd5b79901d792edeb8403684abaffected
LinuxLinuxa95cfa6b86a19a822877e75d5a73b2a95d249e70 < af87a469695dc2b2419b2fdff0bf41db5265b325affected
LinuxLinuxa95cfa6b86a19a822877e75d5a73b2a95d249e70 < c06166a484eece51916dd700a870e53356b7e1bcaffected
LinuxLinuxa95cfa6b86a19a822877e75d5a73b2a95d249e70 < 1b49707df679b5510ed06ace7378ddc2aec5c3fbaffected
LinuxLinuxa95cfa6b86a19a822877e75d5a73b2a95d249e70 < 1e39037e44d7fa3728686af146f9285ea197097daffected
LinuxLinuxa95cfa6b86a19a822877e75d5a73b2a95d249e70 < 7822d994eb9579a1df4cdbc315db090a041e50f3affected
LinuxLinuxa95cfa6b86a19a822877e75d5a73b2a95d249e70 < a80016c40cc797c7f3e5a705b8e12ae447280335affected
LinuxLinuxa95cfa6b86a19a822877e75d5a73b2a95d249e70 < 7a9f743ceead60ed454c46fbc3085ee9a79cbebbaffected
LinuxLinux4.0affected
LinuxLinux0 < 4.0unaffected
LinuxLinux4.9.326 <= 4.9.*unaffected
LinuxLinux4.14.291 <= 4.14.*unaffected
LinuxLinux4.19.256 <= 4.19.*unaffected
LinuxLinux5.4.211 <= 5.4.*unaffected
LinuxLinux5.10.138 <= 5.10.*unaffected
LinuxLinux5.15.63 <= 5.15.*unaffected
LinuxLinux5.19.4 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

References