CVE-2022-49480

Sažetak

In the Linux kernel, the following vulnerability has been resolved: ASoC: imx-hdmi: Fix refcount leak in imx_hdmi_probe of_find_device_by_node() takes reference, we should use put_device() to release it. when devm_kzalloc() fails, it doesn't have a put_device(), it will cause refcount leak. Add missing put_device() to fix this.

Reference

https://git.kernel.org/stable/c/81b7edaabd44ba133006ad72056914eb36828d60
https://git.kernel.org/stable/c/8205a0114db10ec41bd2b748cdd7528632082eca
https://git.kernel.org/stable/c/cf760e494ee5fa6bc2dc222f0098c741ad460801
https://git.kernel.org/stable/c/ed46731d8e86c8d65f5fc717671e1f1f6c3146d2

CVSS

Base:	5.5
Impact:	3.6
Exploitability:	1.8

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	LOW

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	HIGH

CVSS vektor

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Zadnje važnije ažuriranje

17-03-2025 - 16:53

Objavljeno

26-02-2025 - 07:01