CVE-2022-50141
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
18/06/2025
Last modified:
18/11/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
mmc: sdhci-of-esdhc: Fix refcount leak in esdhc_signal_voltage_switch<br />
<br />
of_find_matching_node() returns a node pointer with refcount<br />
incremented, we should use of_node_put() on it when not need anymore.<br />
Add missing of_node_put() to avoid refcount leak.<br />
of_node_put() checks null pointer.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.12 (including) | 4.14.291 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.15 (including) | 4.19.256 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.20 (including) | 5.4.211 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.5 (including) | 5.10.137 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.11 (including) | 5.15.61 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.16 (including) | 5.18.18 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.19 (including) | 5.19.2 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/352377cf74710bc3368dddf78f17210dfe456933
- https://git.kernel.org/stable/c/4c472a2c9ed6ea9d272268d7f484d4303c549f1a
- https://git.kernel.org/stable/c/547db1dd98d1815574ebea7358015a17199a93bc
- https://git.kernel.org/stable/c/8b902840f6a3584f702bcb59834691b30f3d7c5a
- https://git.kernel.org/stable/c/a63d5d01e83b984b1b9c7ae8fc9c8c93697a3820
- https://git.kernel.org/stable/c/b074f1e8060836baeb0ee91181f4194b9a0ee16a
- https://git.kernel.org/stable/c/b305475df756256a186623f0991d05a816de881a
- https://git.kernel.org/stable/c/b5899a3e2f783a27b268e38d37f9b24c71bddf45