228 matches found
DEBIAN-CVE-2022-49354
In the Linux kernel, the following vulnerability has been resolved: ata: pataocteoncf: Fix refcount leak in octeoncfprobe offinddevicebynode takes reference, we should use putdevice to release it when not need anymore. Add missing putdevice to avoid refcount leak...
UBUNTU-CVE-2022-49239
In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd934x: Add missing ofnodeput in wcd934xcodecparsedata The devicenode pointer is returned by ofparsephandle with refcount incremented. We should use ofnodeput on it when done. This is similar to commit 64b92de9603f...
UBUNTU-CVE-2022-49354
In the Linux kernel, the following vulnerability has been resolved: ata: pataocteoncf: Fix refcount leak in octeoncfprobe offinddevicebynode takes reference, we should use putdevice to release it when not need anymore. Add missing putdevice to avoid refcount leak...
CVE-2022-49239
In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd934x: Add missing ofnodeput in wcd934xcodecparsedata The devicenode pointer is returned by ofparsephandle with refcount incremented. We should use ofnodeput on it when done. This is similar to commit 64b92de9603f...
CVE-2022-49213
In the Linux kernel, the following vulnerability has been resolved: ath10k: Fix error handling in ath10ksetupmsaresources The devicenode pointer is returned by ofparsephandle with refcount incremented. We should use ofnodeput on it when done. This function only calls ofnodeput in the regular path...
DEBIAN-CVE-2022-49188
In the Linux kernel, the following vulnerability has been resolved: remoteproc: qcomq6v5mss: Fix some leaks in q6v5allocmemoryregion The devicenode pointer is returned by ofparsephandle or ofgetchildbyname with refcount incremented. We should use ofnodeput on it when done. This function only call...
CVE-2022-49457 ARM: versatile: Add missing of_node_put in dcscb_init
In the Linux kernel, the following vulnerability has been resolved: ARM: versatile: Add missing ofnodeput in dcscbinit The devicenode pointer is returned by offindcompatiblenode with refcount incremented. We should use ofnodeput to avoid the refcount leak...
CVE-2022-49447
In the Linux kernel, the following vulnerability has been resolved: ARM: hisi: Add missing ofnodeput after offindcompatiblenode offindcompatiblenode will increment the refcount of the returned devicenode. Calling ofnodeput to avoid the refcount leak...
CVE-2022-49431
In the Linux kernel, the following vulnerability has been resolved: powerpc/iommu: Add missing ofnodeput in iommuinitearlydart The devicenode pointer is returned by offindcompatiblenode with refcount incremented. We should use ofnodeput to avoid the refcount leak...
CVE-2022-49367 net: dsa: mv88e6xxx: Fix refcount leak in mv88e6xxx_mdios_register
In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Fix refcount leak in mv88e6xxxmdiosregister ofgetchildbyname returns a node pointer with refcount incremented, we should use ofnodeput on it when done. mv88e6xxxmdioregister pass the device node to...
CVE-2022-49367 net: dsa: mv88e6xxx: Fix refcount leak in mv88e6xxx_mdios_register
In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Fix refcount leak in mv88e6xxxmdiosregister ofgetchildbyname returns a node pointer with refcount incremented, we should use ofnodeput on it when done. mv88e6xxxmdioregister pass the device node to...
CVE-2022-49367
Summary (CVE-2022-49367) In the Linux kernel, the mv88e6xxx DSA MDIO registration path contains a refcount leak. The function of_get_child_by_name() returns a node pointer with an incremented refcount, but of_node_put() is not called when finished, leaking references. mv88e6xxx_mdio_register() fo...
CVE-2022-49367 net: dsa: mv88e6xxx: Fix refcount leak in mv88e6xxx_mdios_register
In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Fix refcount leak in mv88e6xxxmdiosregister ofgetchildbyname returns a node pointer with refcount incremented, we should use ofnodeput on it when done. mv88e6xxxmdioregister pass the device node to...
CVE-2022-49367
In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Fix refcount leak in mv88e6xxxmdiosregister ofgetchildbyname returns a node pointer with refcount incremented, we should use ofnodeput on it when done. mv88e6xxxmdioregister pass the device node to...
CVE-2022-49239
CVE-2022-49239 : The Linux kernel ASoC codecs wcd934x path is fixed by addressing a missing of_node_put() after of_parse_phandle() returned a device_node with an incremented refcount. The bug resembles a leaked reference fix in a related commit. The connected advisories (Astra Linux, SUSE, Nessus...
CVE-2022-49239
In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd934x: Add missing ofnodeput in wcd934xcodecparsedata The devicenode pointer is returned by ofparsephandle with refcount incremented. We should use ofnodeput on it when done. This is similar to commit 64b92de9603f...
CVE-2022-49213 ath10k: Fix error handling in ath10k_setup_msa_resources
In the Linux kernel, the following vulnerability has been resolved: ath10k: Fix error handling in ath10ksetupmsaresources The devicenode pointer is returned by ofparsephandle with refcount incremented. We should use ofnodeput on it when done. This function only calls ofnodeput in the regular path...
CVE-2022-49188
In the Linux kernel, the following vulnerability has been resolved: remoteproc: qcomq6v5mss: Fix some leaks in q6v5allocmemoryregion The devicenode pointer is returned by ofparsephandle or ofgetchildbyname with refcount incremented. We should use ofnodeput on it when done. This function only call...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the ASoC mediatek driver not properly handling device node reference counting in the...
Huawei HarmonyOS Device Node Access Module Memory Misreference Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A memory misreference vulnerability exists in the Huawei HarmonyOS device node access module, which can be exploited by an attacker to cause a device service...