← Back to CVEs
CVE-2022-49241
MEDIUM5.5
Description
In the Linux kernel, the following vulnerability has been resolved: ASoC: atmel: Fix error handling in sam9x5_wm8731_driver_probe The device_node pointer is returned by of_parse_phandle() with refcount incremented. We should use of_node_put() on it when done. This function only calls of_node_put() in the regular path. And it will cause refcount leak in error path.
CVE Details
CVSS v3.1 Score5.5
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack VectorLOCAL
ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
Published2/26/2025
Last Modified10/1/2025
Sourcenvd
Honeypot Sightings0
Affected Products
linux:linux_kernel
References
https://git.kernel.org/stable/c/14228225091a0854b1de23e5b4fe8bdeeca9683b(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/740dc3e846537c3743da98bf106f376023fd085c(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/90ac679aa6a01841da90ec5a4aaa4b5e0badddf0(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/f43ad5dc43240289f4cf13c16cc506f4f7087931(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/f589063b585ac6dd2081bde6c145411cf48d8d92(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.