CVE-2022-49517

ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe

CVSS 5.5 MEDIUMEPSS 0.2%

Vexday Risk Score

13Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 5.5EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

26 Feb 2025Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe This node pointer is returned by of_parse_phandle() with refcount incremented in this function. Calling of_node_put() to avoid the refcount leak.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Linux · Linux

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://git.kernel.org/stable/c/05654431a18fe24e5e46a375d98904134628a102 https://git.kernel.org/stable/c/318afb1442eeef089fe7f8a8297d97c0302ff6f6 https://git.kernel.org/stable/c/61a85a20e8df5e0a92cfe169c92425c7bae0753b https://git.kernel.org/stable/c/9345122f5fb9f97a206f440f38bb656e53f46912 https://git.kernel.org/stable/c/94587aa17abf8b26f543d2b29c44abc21bc36836 https://git.kernel.org/stable/c/bc2afecaabd2a2c9f17e43b4793a30e3461bfb29 https://git.kernel.org/stable/c/c71494f5f2b444adfd992a7359a0d2a791642b39 https://git.kernel.org/stable/c/f279c49f17ce10866087ea6c0c57382158974b63