CVE-2022-49621

March 11, 2025, 10:18 p.m.

5.5
Medium

Description

In the Linux kernel, the following vulnerability has been resolved: cpufreq: pmac32-cpufreq: Fix refcount leak bug In pmac_cpufreq_init_MacRISC3(), we need to add corresponding of_node_put() for the three node pointers whose refcount have been incremented by of_find_node_by_name().

Product(s) Impacted

Vendor Product Versions
Linux
  • Linux Kernel
  • *, 5.19

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
o linux linux_kernel / / / / / / / /
o linux linux_kernel / / / / / / / /
o linux linux_kernel / / / / / / / /
o linux linux_kernel / / / / / / / /
o linux linux_kernel / / / / / / / /
o linux linux_kernel / / / / / / / /
o linux linux_kernel / / / / / / / /
o linux linux_kernel 5.19 rc1 / / / / / /
o linux linux_kernel 5.19 rc2 / / / / / /
o linux linux_kernel 5.19 rc3 / / / / / /
o linux linux_kernel 5.19 rc4 / / / / / /

References

https://git.kernel.org/stable/c/37c16fc2cb13a13f3c0193bfc6f2edef7d7df7d7
https://git.kernel.org/stable/c/3ea9dbf7c2f436952bca331c6f5d72f75aca224e
https://git.kernel.org/stable/c/4513018d0bd739097570d26a7760551cba3deb56
https://git.kernel.org/stable/c/4585890ab2dbf455d80e254d3d859d4c1e357920
https://git.kernel.org/stable/c/4f242486bf46d314b2e3838cc64b56f008a3c4d7
https://git.kernel.org/stable/c/57289b6601fe78c09921599b042a0b430fb420ec
https://git.kernel.org/stable/c/8dda30f81c751b01cd71f2cfaeef26ad4393b1d1
https://git.kernel.org/stable/c/ccd7567d4b6cf187fdfa55f003a9e461ee629e36

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
NVD-CWE-Other
2025-02-26
CVE-2022-49621

CVSS Score

5.5 / 10

CVSS Data - 3.1

  • Attack Vector: LOCAL
  • Attack Complexity: LOW
  • Privileges Required: LOW
  • Scope: UNCHANGED
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: HIGH

    • CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

    View Vector String

Timeline

Published: Feb. 26, 2025, 7:01 a.m.
Last Modified: March 11, 2025, 10:18 p.m.

Status : Analyzed

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.