CVE-2022-50039

Summary

In the Linux kernel, the following vulnerability has been resolved:

stmmac: intel: Add a missing clk_disable_unprepare() call in intel_eth_pci_remove()

Commit 09f012e64e4b ("stmmac: intel: Fix clock handling on error and remove paths") removed this clk_disable_unprepare()

This was partly revert by commit ac322f86b56c ("net: stmmac: Fix clock handling on remove path") which removed this clk_disable_unprepare() because: " While unloading the dwmac-intel driver, clk_disable_unprepare() is being called twice in stmmac_dvr_remove() and intel_eth_pci_remove(). This causes kernel panic on the second call. "

However later on, commit 5ec55823438e8 ("net: stmmac: add clocks management for gmac driver") has updated stmmac_dvr_remove() which do not call clk_disable_unprepare() anymore.

So this call should now be called from intel_eth_pci_remove().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux3afe11be6435e126f1507ddf1a9d0e5a0d90b336 < 02f3642d8e657c05f382729c165bed46745dc18caffected
LinuxLinux5ec55823438e850c91c6b92aec93fb04ebde29e2 < 47129531196054b374017555165b47a43cdb6f41affected
LinuxLinux5ec55823438e850c91c6b92aec93fb04ebde29e2 < 9400aeb419d35e718e90aa14a97c11229d0a40bcaffected
LinuxLinux5ec55823438e850c91c6b92aec93fb04ebde29e2 < 5c23d6b717e4e956376f3852b90f58e262946b50affected
LinuxLinux5.10.81 < 5.10.138affected
LinuxLinux5.13affected
LinuxLinux0 < 5.13unaffected
LinuxLinux5.10.138 <= 5.10.*unaffected
LinuxLinux5.15.63 <= 5.15.*unaffected
LinuxLinux5.19.4 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

References