CVE-2022-50153
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
18/06/2025
Last modified:
25/11/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
usb: host: Fix refcount leak in ehci_hcd_ppc_of_probe<br />
<br />
of_find_compatible_node() returns a node pointer with refcount<br />
incremented, we should use of_node_put() on it when done.<br />
Add missing of_node_put() to avoid refcount leak.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 2.6.29 (including) | 4.14.291 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.15 (including) | 4.19.256 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.20 (including) | 5.4.211 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.5 (including) | 5.10.137 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.11 (including) | 5.15.61 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.16 (including) | 5.18.18 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.19 (including) | 5.19.2 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/038453b17fe30ea38f0f3c916e2ae2b7f8cef84e
- https://git.kernel.org/stable/c/3a50c917c67dd0bc39c14de4a8b75a1d50fdce66
- https://git.kernel.org/stable/c/585d22a5624ef2b540c337665c72fea8cd33db50
- https://git.kernel.org/stable/c/8cbc3870ff356366842af3228dd8e7bc278e5edd
- https://git.kernel.org/stable/c/8e51a512c1079109bec4c80915e647692d583e79
- https://git.kernel.org/stable/c/b5c5b13cb45e2c88181308186b0001992cb41954
- https://git.kernel.org/stable/c/b9c4a480cb0ada07154debf681454cbb55e30b59
- https://git.kernel.org/stable/c/c0a4b454486b23bb4d94ce49f490830ecc354040