CVE-2022-49137

MEDIUM EPSS 15.4%
Published Feb 26, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/amdgpu/amdgpu_cs: fix refcount leak of a dma_fence obj This issue takes place in an error path in amdgpu_cs_fence_to_handle_ioctl(). When `info->in.what` falls into default case, the function simply returns -EINVAL, forgetting to decrement the reference count of a dma_fence obj, which is bumped earlier by amdgpu_cs_get_fence(). This may result in reference count leaks. Fix it by decreasing the refcount of specific object before returning the error code.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
15.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 6

VendorProductVersionRange
linuxlinux_kernel* <4.19.238
linuxlinux_kernel*≥4.20  –  <5.4.189
linuxlinux_kernel*≥5.5  –  <5.10.111
linuxlinux_kernel*≥5.11  –  <5.15.34
linuxlinux_kernel*≥5.16  –  <5.16.20
linuxlinux_kernel*≥5.17  –  <5.17.3

References 7

  • git.kernel.org https://git.kernel.org/stable/c/3edd8646cb7c11b57c90e026bda6f21076223f5b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4009f104b02b223d1a11d74b36b1cc083bc37028
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/72d77ddb2224ebc00648f4f78f8a9a259dccbdf7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/927beb05aaa429c883cc0ec6adc48964b187e291
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b6d1f7d97c81ebaf2cda9c4c943ee2e484fffdcf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bc2d5c0775c839e2b072884f4ee6a93ba410f107
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dfced44f122c500004a48ecc8db516bb6a295a1b
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/3edd8646cb7c11b57c90e026bda6f21076223f5b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4009f104b02b223d1a11d74b36b1cc083bc37028
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/72d77ddb2224ebc00648f4f78f8a9a259dccbdf7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/927beb05aaa429c883cc0ec6adc48964b187e291
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b6d1f7d97c81ebaf2cda9c4c943ee2e484fffdcf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bc2d5c0775c839e2b072884f4ee6a93ba410f107
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dfced44f122c500004a48ecc8db516bb6a295a1b
    Patch