CVE-2022-50106
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
18/06/2025
Last modified:
19/11/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
powerpc/cell/axon_msi: Fix refcount leak in setup_msi_msg_address<br />
<br />
of_get_next_parent() returns a node pointer with refcount incremented,<br />
we should use of_node_put() on it when not need anymore.<br />
Add missing of_node_put() in the error path to avoid refcount leak.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 2.6.23 (including) | 4.14.291 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.15 (including) | 4.19.256 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.20 (including) | 5.4.211 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.5 (including) | 5.10.137 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.11 (including) | 5.15.61 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.16 (including) | 5.18.18 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.19 (including) | 5.19.2 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/00dc7cbbb558955ff410fd392cc9b0366eb06df0
- https://git.kernel.org/stable/c/02ed44125d7a7238999750ca126b60f8dd7a88b1
- https://git.kernel.org/stable/c/51cf876b11fb6ca06f69e9d1de58f892d1522e9d
- https://git.kernel.org/stable/c/5eaa93caa63abf382b319dbe2f032232026740c2
- https://git.kernel.org/stable/c/6263ec8032c411b8ef6b7f00198cb18c855ee6cb
- https://git.kernel.org/stable/c/af41cff4ada533b1cf40de6c468ba164fd32c22d
- https://git.kernel.org/stable/c/df5d4b616ee76abc97e5bd348e22659c2b095b1c
- https://git.kernel.org/stable/c/f388643657cd5a04dc47a68d85321876c5b4c208