CVE-2022-49346

MEDIUM EPSS 15.9%
Published Feb 26, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: net: dsa: lantiq_gswip: Fix refcount leak in gswip_gphy_fw_list Every iteration of for_each_available_child_of_node() decrements the reference count of the previous node. when breaking early from a for_each_available_child_of_node() loop, we need to explicitly call of_node_put() on the gphy_fw_np. Add missing of_node_put() to avoid refcount leak.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
15.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 6

VendorProductVersionRange
linuxlinux_kernel*≥4.20  –  <5.4.198
linuxlinux_kernel*≥5.5  –  <5.10.122
linuxlinux_kernel*≥5.11  –  <5.15.47
linuxlinux_kernel*≥5.16  –  <5.17.15
linuxlinux_kernel*≥5.18  –  <5.18.4
linuxlinux_kernel5.19any

References 6

  • git.kernel.org https://git.kernel.org/stable/c/0737e018a05e2aa352828c52bdeed3b02cff2930
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2e007ac6fa7c9c94ad84da075c5c504afad690a0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/32cd78c5610f02a929f63cac985e73692d05f33e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/54d6802c4d83fa8de7696cfec06f475d5fd92d27
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7c8df6fad43d9d5d77f281f794b2a93cd02fd1a9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c2ae49a113a5344232f1ebb93bcf18bbd11e9c39
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0737e018a05e2aa352828c52bdeed3b02cff2930
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2e007ac6fa7c9c94ad84da075c5c504afad690a0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/32cd78c5610f02a929f63cac985e73692d05f33e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/54d6802c4d83fa8de7696cfec06f475d5fd92d27
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7c8df6fad43d9d5d77f281f794b2a93cd02fd1a9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c2ae49a113a5344232f1ebb93bcf18bbd11e9c39
    Patch