CVE-2022-49011

In the Linux kernel, the following vulnerability has been resolved: hwmon: (coretemp) fix pci device refcount leak in nv1a_ram_new() As comment of pci_get_domain_bus_and_slot() says, it returns a pci device with refcount increment, when finish using it, the caller must decrement the reference count by calling pci_dev_put(). So call it after using to avoid refcount leak.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc7:*:*:*:*:*:*

History

24 Oct 2024, 19:01

Type Values Removed Values Added
CPE cpe:2.3:o:linux:linux_kernel:6.1:rc7:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc4:*:*:*:*:*:*
First Time Linux linux Kernel
Linux
References () https://git.kernel.org/stable/c/0dd1da5a15eeecb2fe4cf131b3216fb455af783c - () https://git.kernel.org/stable/c/0dd1da5a15eeecb2fe4cf131b3216fb455af783c - Patch
References () https://git.kernel.org/stable/c/2f74cffc7c85f770b1b1833dccb03b8cde3be102 - () https://git.kernel.org/stable/c/2f74cffc7c85f770b1b1833dccb03b8cde3be102 - Patch
References () https://git.kernel.org/stable/c/6e035d5a2a6b907cfce9a80c5f442c2e459cd34e - () https://git.kernel.org/stable/c/6e035d5a2a6b907cfce9a80c5f442c2e459cd34e - Patch
References () https://git.kernel.org/stable/c/7dec14537c5906b8bf40fd6fd6d9c3850f8df11d - () https://git.kernel.org/stable/c/7dec14537c5906b8bf40fd6fd6d9c3850f8df11d - Patch
References () https://git.kernel.org/stable/c/bb75a0d1223d43f97089841aecb28a9b4de687a9 - () https://git.kernel.org/stable/c/bb75a0d1223d43f97089841aecb28a9b4de687a9 - Patch
References () https://git.kernel.org/stable/c/c40db1e5f316792b557d2be37e447c20d9ac4635 - () https://git.kernel.org/stable/c/c40db1e5f316792b557d2be37e447c20d9ac4635 - Patch
References () https://git.kernel.org/stable/c/ea5844f946b1ec5c0b7c115cd7684f34fd48021b - () https://git.kernel.org/stable/c/ea5844f946b1ec5c0b7c115cd7684f34fd48021b - Patch
References () https://git.kernel.org/stable/c/f598da27acbeee414679cacd14294db3e273e3d2 - () https://git.kernel.org/stable/c/f598da27acbeee414679cacd14294db3e273e3d2 - Patch
CWE CWE-401
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.5

23 Oct 2024, 15:13

Type Values Removed Values Added
Summary
  • (es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: hwmon: (coretemp) corrige la pérdida de recuento de referencias del dispositivo pci en nv1a_ram_new() Como dice el comentario de pci_get_domain_bus_and_slot(), devuelve un dispositivo pci con un incremento de recuento de referencias, cuando termina de usarlo, el llamador debe disminuir el recuento de referencias llamando a pci_dev_put(). Por lo tanto, llámelo después de usarlo para evitar la pérdida de recuento de referencias.

21 Oct 2024, 20:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-21 20:15

Updated : 2024-10-24 19:01


NVD link : CVE-2022-49011

Mitre link : CVE-2022-49011

CVE.ORG link : CVE-2022-49011


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-401

Missing Release of Memory after Effective Lifetime