CVE-2023-52571

Summary

In the Linux kernel, the following vulnerability has been resolved:

power: supply: rk817: Fix node refcount leak

Dan Carpenter reports that the Smatch static checker warning has found that there is another refcount leak in the probe function. While of_node_put() was added in one of the return paths, it should in fact be added for ALL return paths that return an error and at driver removal time.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7d1e3961725e69774871b081a065c2b3640c5f0e < fe6406238d5a24e9fb0286c71edd67b99d8db58daffected
LinuxLinux54c03bfd094fb74f9533a9c28250219afe182382 < 70326b46b6a043f7e7404b2ff678b033c06d6577affected
LinuxLinux54c03bfd094fb74f9533a9c28250219afe182382 < 488ef44c068e79752dba8eda0b75f524f111a695affected
LinuxLinux6.1.2 < 6.1.56affected
LinuxLinux6.2affected
LinuxLinux0 < 6.2unaffected
LinuxLinux6.1.56 <= 6.1.*unaffected
LinuxLinux6.5.6 <= 6.5.*unaffected
LinuxLinux6.6 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References