CVE-2022-50250
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
regulator: core: fix use_count leakage when handling boot-on
I found a use_count leakage towards supply regulator of rdev with boot-on option.
┌───────────────────┐ ┌───────────────────┐ │ regulator_dev A │ │ regulator_dev B │ │ (boot-on) │ │ (boot-on) │ │ use_count=0 │◀──supply──│ use_count=1 │ │ │ │ │ └───────────────────┘ └───────────────────┘
In case of rdev(A) configured with `regulator-boot-on', the use_count of supplying regulator(B) will increment inside regulator_enable(rdev->supply).
Thus, B will acts like always-on, and further balanced regulator_enable/disable cannot actually disable it anymore.
However, B was also configured with `regulator-boot-on', we wish it could be disabled afterwards.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | dc1b1d7faf616ed663d0bba9be5abb4d1ed35d01 < dc3391d49479bc2bf8a2b88dbf86fdd800882fee | affected |
| Linux | Linux | f44b07472f29ae313ce875dc7b9c75b100c608b8 < 5bfc53df288e8ea54ca6866fb92034214940183f | affected |
| Linux | Linux | 089b3f61ecfc43ca4ea26d595e1d31ead6de3f7b < 4b737246ff50f810d6ab4be13c1388a07f0c14b1 | affected |
| Linux | Linux | 089b3f61ecfc43ca4ea26d595e1d31ead6de3f7b < feb847e6591e8c7a09cc39721cc9ca74fd9a5d80 | affected |
| Linux | Linux | 089b3f61ecfc43ca4ea26d595e1d31ead6de3f7b < 4dd6e1cc9c7403f1ee1b7eee85bc31b797ae8347 | affected |
| Linux | Linux | 089b3f61ecfc43ca4ea26d595e1d31ead6de3f7b < bc6c381df5793ebcf32db88a3e65acf7870379fc | affected |
| Linux | Linux | 089b3f61ecfc43ca4ea26d595e1d31ead6de3f7b < 0591b14ce0398125439c759f889647369aa616a0 | affected |
| Linux | Linux | 4.19.226 < 4.19.270 | affected |
| Linux | Linux | 5.4.7 < 5.4.229 | affected |
| Linux | Linux | 5.5 | affected |
| Linux | Linux | 0 < 5.5 | unaffected |
| Linux | Linux | 4.19.270 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.229 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.163 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.86 <= 5.15.* | unaffected |
| Linux | Linux | 6.0.16 <= 6.0.* | unaffected |
| Linux | Linux | 6.1.2 <= 6.1.* | unaffected |
| Linux | Linux | 6.2 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/dc3391d49479bc2bf8a2b88dbf86fdd800882fee
- https://git.kernel.org/stable/c/5bfc53df288e8ea54ca6866fb92034214940183f
- https://git.kernel.org/stable/c/4b737246ff50f810d6ab4be13c1388a07f0c14b1
- https://git.kernel.org/stable/c/feb847e6591e8c7a09cc39721cc9ca74fd9a5d80
- https://git.kernel.org/stable/c/4dd6e1cc9c7403f1ee1b7eee85bc31b797ae8347
- https://git.kernel.org/stable/c/bc6c381df5793ebcf32db88a3e65acf7870379fc
- https://git.kernel.org/stable/c/0591b14ce0398125439c759f889647369aa616a0
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.