CVE-2022-49438
Linux Kernel Sparcspkr Refcount Leak Vulnerability
Description
In the Linux kernel, the following vulnerability has been resolved: Input: sparcspkr - fix refcount leak in bbc_beep_probe of_find_node_by_path() calls of_find_node_opts_by_path(), which returns a node pointer with refcount incremented, we should use of_node_put() on it when done. Add missing of_node_put() to avoid refcount leak.
INFO
Published Date :
Feb. 26, 2025, 7:01 a.m.
Last Modified :
Feb. 26, 2025, 7:01 a.m.
Source :
416baaa9-dc9f-4396-8d5f-8c081fb06d67
Remotely Exploitable :
No
Impact Score :
Exploitability Score :
References to Advisories, Solutions, and Tools
Here, you will find a curated list of external links that provide in-depth
information, practical solutions, and valuable tools related to
CVE-2022-49438.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2022-49438 vulnerability anywhere in the article.
The following table lists the changes that have been made to the
CVE-2022-49438 vulnerability over time.
Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.
-
New CVE Received by 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Feb. 26, 2025
Action Type Old Value New Value Added Description In the Linux kernel, the following vulnerability has been resolved: Input: sparcspkr - fix refcount leak in bbc_beep_probe of_find_node_by_path() calls of_find_node_opts_by_path(), which returns a node pointer with refcount incremented, we should use of_node_put() on it when done. Add missing of_node_put() to avoid refcount leak. Added Reference https://git.kernel.org/stable/c/1124e39fea0e2fdb4202f95b716cb97cc7de7cc7 Added Reference https://git.kernel.org/stable/c/2f51db16cb740ff90086189a1ef2581eab665591 Added Reference https://git.kernel.org/stable/c/353bc58ac6c782d4dcde9136a91d1f90867938fe Added Reference https://git.kernel.org/stable/c/418b6a3e12f75638abc5673eb76cb32127d0ab13 Added Reference https://git.kernel.org/stable/c/6e07ccc7d56130f760d23f67a70c45366c07debc Added Reference https://git.kernel.org/stable/c/73d6f42d8d86648bec2e73d34fe1648cb6d23e08 Added Reference https://git.kernel.org/stable/c/bbc2b0ce6042dd3117827f10ea8cb67e0ab786da Added Reference https://git.kernel.org/stable/c/c8994b30d71d64d5dcc9bc0edbfdf367171aa96f Added Reference https://git.kernel.org/stable/c/f13064b0f2c651a3fbb0749932795c6fd21556a8
CWE - Common Weakness Enumeration
While CVE identifies
specific instances of vulnerabilities, CWE categorizes the common flaws or
weaknesses that can lead to vulnerabilities. CVE-2022-49438 is
associated with the following CWEs:
Common Attack Pattern Enumeration and Classification (CAPEC)
Common Attack Pattern Enumeration and Classification
(CAPEC)
stores attack patterns, which are descriptions of the common attributes and
approaches employed by adversaries to exploit the CVE-2022-49438
weaknesses.