CVE-2022-50104
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
18/06/2025
Last modified:
19/11/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
powerpc/xive: Fix refcount leak in xive_get_max_prio<br />
<br />
of_find_node_by_path() returns a node pointer with<br />
refcount incremented, we should use of_node_put() on it when done.<br />
Add missing of_node_put() to avoid refcount leak.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.14 (including) | 4.14.291 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.15 (including) | 4.19.256 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.20 (including) | 5.4.211 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.5 (including) | 5.10.137 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.11 (including) | 5.15.61 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.16 (including) | 5.18.18 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.19 (including) | 5.19.2 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/255b650cbec6849443ce2e0cdd187fd5e61c218c
- https://git.kernel.org/stable/c/2e18b869a8d574cfe9ee64df9c3d0a7ac7ed07a8
- https://git.kernel.org/stable/c/5ed9709d262bf026b2ff64979fbfe0f496287588
- https://git.kernel.org/stable/c/6d1e53f7f181a11a8a343def1e0d0209905b7c64
- https://git.kernel.org/stable/c/79b8eae24b7ee157bda07695d802be8576983fa8
- https://git.kernel.org/stable/c/d99733ad47a6c990b52e136608455643bfa708f2
- https://git.kernel.org/stable/c/ea494e8a9852abd0ba60f69b254ce0d7c38449e2
- https://git.kernel.org/stable/c/f658d5b528ce97a68efbb64ee54f6fe0909b189a