CVE-2022-50190

Summary

In the Linux kernel, the following vulnerability has been resolved:

spi: Fix simplification of devm_spi_register_controller

This reverts commit 59ebbe40fb51 ("spi: simplify devm_spi_register_controller").

If devm_add_action() fails in devm_add_action_or_reset(), devm_spi_unregister() will be called, it decreases the refcount of 'ctlr->dev' to 0, then it will cause uaf in the drivers that calling spi_put_controller() in error path.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux59ebbe40fb51e307032ae7f63b2749fad2d4635a < 445fb9c19cf45bd9472fd9babaa31c5e6c7d2720affected
LinuxLinux59ebbe40fb51e307032ae7f63b2749fad2d4635a < 34bab623ebfc08398499e463396b81abb4abe01eaffected
LinuxLinux59ebbe40fb51e307032ae7f63b2749fad2d4635a < 3c6bd448442b6c3f6843ac70d57201a13478dd47affected
LinuxLinux59ebbe40fb51e307032ae7f63b2749fad2d4635a < 43cc5a0afe4184a7fafe1eba32b5a11bb69c9ce0affected
LinuxLinux5.13affected
LinuxLinux0 < 5.13unaffected
LinuxLinux5.15.61 <= 5.15.*unaffected
LinuxLinux5.18.18 <= 5.18.*unaffected
LinuxLinux5.19.2 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

References