CVE-2022-50017
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
18/06/2025
Last modified:
13/11/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
mips: cavium-octeon: Fix missing of_node_put() in octeon2_usb_clocks_start<br />
<br />
We should call of_node_put() for the reference &#39;uctl_node&#39; returned by<br />
of_get_parent() which will increase the refcount. Otherwise, there will<br />
be a refcount leak bug.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.9.326 (excluding) | |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.10 (including) | 4.14.291 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.15 (including) | 4.19.256 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.20 (including) | 5.4.211 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.5 (including) | 5.10.138 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.11 (including) | 5.15.63 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.16 (including) | 5.19.4 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/1b49707df679b5510ed06ace7378ddc2aec5c3fb
- https://git.kernel.org/stable/c/1e39037e44d7fa3728686af146f9285ea197097d
- https://git.kernel.org/stable/c/7822d994eb9579a1df4cdbc315db090a041e50f3
- https://git.kernel.org/stable/c/7a9f743ceead60ed454c46fbc3085ee9a79cbebb
- https://git.kernel.org/stable/c/9d1afa0169a84dcd5b79901d792edeb8403684ab
- https://git.kernel.org/stable/c/a80016c40cc797c7f3e5a705b8e12ae447280335
- https://git.kernel.org/stable/c/af87a469695dc2b2419b2fdff0bf41db5265b325
- https://git.kernel.org/stable/c/c06166a484eece51916dd700a870e53356b7e1bc