CVE-2022-49787

MEDIUM EPSS 7.6%
Published May 1, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 1, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: mmc: sdhci-pci: Fix possible memory leak caused by missing pci_dev_put() pci_get_device() will increase the reference count for the returned pci_dev. We need to use pci_dev_put() to decrease the reference count before amd_probe() returns. There is no problem for the 'smbus_dev == NULL' branch because pci_dev_put() can also handle the NULL input parameter case.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
7.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 11

VendorProductVersionRange
linuxlinux_kernel*≥4.4  –  <4.14.300
linuxlinux_kernel*≥4.15  –  <4.19.267
linuxlinux_kernel*≥4.20  –  <5.4.225
linuxlinux_kernel*≥5.5  –  <5.10.156
linuxlinux_kernel*≥5.11  –  <5.15.80
linuxlinux_kernel*≥5.16  –  <6.0.10
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any

References 7

  • git.kernel.org https://git.kernel.org/stable/c/222cfa0118aa68687ace74aab8fdf77ce8fbd7e6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/27f712cd47d65e14cd52cc32a23d42aeef583d5d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/35bca18092685b488003509fef7055aa2d4f2ebc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4423866d31a06a810db22062ed13389416a66b22
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5dbd6378dbf96787d6dbcca44156c511ae085ea3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7570e5b5419ffd34b6dc45a88c51e113a9a187e3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a99a547658e5d451f01ed307426286716b6f01bf
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/222cfa0118aa68687ace74aab8fdf77ce8fbd7e6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/27f712cd47d65e14cd52cc32a23d42aeef583d5d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/35bca18092685b488003509fef7055aa2d4f2ebc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4423866d31a06a810db22062ed13389416a66b22
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5dbd6378dbf96787d6dbcca44156c511ae085ea3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7570e5b5419ffd34b6dc45a88c51e113a9a187e3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a99a547658e5d451f01ed307426286716b6f01bf
    Patch