CVE-2022-50480

Summary

In the Linux kernel, the following vulnerability has been resolved:

memory: pl353-smc: Fix refcount leak bug in pl353_smc_probe()

The break of for_each_available_child_of_node() needs a corresponding of_node_put() when the reference 'child' is not used anymore. Here we do not need to call of_node_put() in fail path as '!match' means no break.

While the of_platform_device_create() will created a new reference by 'child' but it has considered the refcounting.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxfee10bd2267868f2a3e7ba008ef7665aac5e4412 < b37f4a711e5d4bf3608ccbc6de82b52e92b441a0affected
LinuxLinuxfee10bd2267868f2a3e7ba008ef7665aac5e4412 < fde46754d5483bc398018bbec3c8ef5c55219e67affected
LinuxLinuxfee10bd2267868f2a3e7ba008ef7665aac5e4412 < 566b143aa5112a0c2784e20603778518bb799537affected
LinuxLinuxfee10bd2267868f2a3e7ba008ef7665aac5e4412 < 44db35ceb94756ba513dcf6b69bf9e949b28469caffected
LinuxLinuxfee10bd2267868f2a3e7ba008ef7665aac5e4412 < 49605dc25e7fb33bf8b671279d4468531da90f89affected
LinuxLinuxfee10bd2267868f2a3e7ba008ef7665aac5e4412 < 61b3c876c1cbdb1efd1f52a1f348580e6e14efb6affected
LinuxLinux5.0affected
LinuxLinux0 < 5.0unaffected
LinuxLinux5.4.220 <= 5.4.*unaffected
LinuxLinux5.10.150 <= 5.10.*unaffected
LinuxLinux5.15.75 <= 5.15.*unaffected
LinuxLinux5.19.17 <= 5.19.*unaffected
LinuxLinux6.0.3 <= 6.0.*unaffected
LinuxLinux6.1 <= *unaffected

Weaknesses

References