CVE-2022-50157

Summary

In the Linux kernel, the following vulnerability has been resolved:

PCI: microchip: Fix refcount leak in mc_pcie_init_irq_domains()

of_get_next_child() returns a node pointer with refcount incremented, so we should use of_node_put() on it when we don't need it anymore.

mc_pcie_init_irq_domains() only calls of_node_put() in the normal path, missing it in some error paths. Add missing of_node_put() to avoid refcount leak.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux6f15a9c9f94133bee0d861a4bf25e10aaa95219d < c0ad5c7e68d10f6f8ffb0f4329e3c19404fbca58affected
LinuxLinux6f15a9c9f94133bee0d861a4bf25e10aaa95219d < 6cd5f93b5c6a66c68a91dbc604a78207252ecd43affected
LinuxLinux6f15a9c9f94133bee0d861a4bf25e10aaa95219d < 880ece912b958a0c92cc0baa8e906fb9b49a4b53affected
LinuxLinux6f15a9c9f94133bee0d861a4bf25e10aaa95219d < f030304fdeb87ec8f1b518c73703214aec6cc24aaffected
LinuxLinux5.12affected
LinuxLinux0 < 5.12unaffected
LinuxLinux5.15.61 <= 5.15.*unaffected
LinuxLinux5.18.18 <= 5.18.*unaffected
LinuxLinux5.19.2 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

References