← Zuruck zu CVEs

CVE-2022-49213

MEDIUM

5.5

Beschreibung

In the Linux kernel, the following vulnerability has been resolved: ath10k: Fix error handling in ath10k_setup_msa_resources The device_node pointer is returned by of_parse_phandle() with refcount incremented. We should use of_node_put() on it when done. This function only calls of_node_put() in the regular path. And it will cause refcount leak in error path.

CVE Details

CVSS v3.1 Bewertung5.5

SchweregradMEDIUM

CVSS VektorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AngriffsvektorLOCAL

KomplexitatLOW

Erforderliche PrivilegienLOW

BenutzerinteraktionNONE

Veroffentlicht2/26/2025

Zuletzt geandert10/1/2025

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

linux:linux_kernel

Referenzen

https://git.kernel.org/stable/c/315772133a4b960859e4f5efe0e738e347188cdc(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/32939187f254171a5666badc058bc3787fe454af(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/4ed37d611ea5d222c3ecb3549e4c2d34b8f3c335(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/74b1d41e1b6410eed5c76d00eedb262036e9eff5(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

https://git.kernel.org/stable/c/9747a78d5f758a5284751a10aee13c30d02bd5f1(416baaa9-dc9f-4396-8d5f-8c081fb06d67)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.