CVE-2022-50645

Summary

In the Linux kernel, the following vulnerability has been resolved:

EDAC/i10nm: fix refcount leak in pci_get_dev_wrapper()

As the comment of pci_get_domain_bus_and_slot() says, it returns a PCI device with refcount incremented, so it doesn't need to call an extra pci_dev_get() in pci_get_dev_wrapper(), and the PCI device needs to be put in the error path.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd4dc89d069aab9074e2493a4c2f3969a0a0b91c1 < e6e295a434d1c917a017980389aec88bf35cc81baffected
LinuxLinuxd4dc89d069aab9074e2493a4c2f3969a0a0b91c1 < 2db53c7059167b63cc790366ef1a9e286e71980baffected
LinuxLinuxd4dc89d069aab9074e2493a4c2f3969a0a0b91c1 < 3e255dc21031cc1f341584eb99a7f31598bf0be7affected
LinuxLinuxd4dc89d069aab9074e2493a4c2f3969a0a0b91c1 < 1adb2583cdbd75f379e3230a43a7412d373d499faffected
LinuxLinuxd4dc89d069aab9074e2493a4c2f3969a0a0b91c1 < f29c2f57cdf7a57223dcd9fbaa2261faab5234b2affected
LinuxLinuxd4dc89d069aab9074e2493a4c2f3969a0a0b91c1 < 9c8921555907f4d723f01ed2d859b66f2d14f08eaffected
LinuxLinux5.1affected
LinuxLinux0 < 5.1unaffected
LinuxLinux5.4.229 <= 5.4.*unaffected
LinuxLinux5.10.163 <= 5.10.*unaffected
LinuxLinux5.15.86 <= 5.15.*unaffected
LinuxLinux6.0.16 <= 6.0.*unaffected
LinuxLinux6.1.2 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

References