CVE-2022-49712

Sažetak

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: lpc32xx_udc: Fix refcount leak in lpc32xx_udc_probe of_parse_phandle() returns a node pointer with refcount incremented, we should use of_node_put() on it when not need anymore. Add missing of_node_put() to avoid refcount leak. of_node_put() will check NULL pointer.

Reference

https://git.kernel.org/stable/c/0ef6917c0524da5b88496b9706628ffef108b9bb
https://git.kernel.org/stable/c/2a598da14856ead80c726b38ba426c68637d9211
https://git.kernel.org/stable/c/46da1e4a8b6329479433b2a4056941dfdd7f3efd
https://git.kernel.org/stable/c/4757c9ade34178b351580133771f510b5ffcf9c8
https://git.kernel.org/stable/c/57901c658f77d9ea2e772f35cb38e47efb54c558
https://git.kernel.org/stable/c/727c82d003e0ec64411fd1257a9a57de4ad7a99a
https://git.kernel.org/stable/c/b75bddfcc18170ce8e3fb695a76ec2dec4ce0ea5
https://git.kernel.org/stable/c/d85e4e6284a91aa2d1ab004e9d84b9c09b4aa203

CVSS

Base:	5.5
Impact:	3.6
Exploitability:	1.8

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	LOW

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	HIGH

CVSS vektor

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Zadnje važnije ažuriranje

11-03-2025 - 21:58

Objavljeno

26-02-2025 - 07:01