CVE-2022-50160
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
18/06/2025
Last modified:
18/11/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
mtd: maps: Fix refcount leak in ap_flash_init<br />
<br />
of_find_matching_node() returns a node pointer with refcount<br />
incremented, we should use of_node_put() on it when not need anymore.<br />
Add missing of_node_put() to avoid refcount leak.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.7 (including) | 4.14.291 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.15 (including) | 4.19.256 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.20 (including) | 5.4.211 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.5 (including) | 5.10.137 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.11 (including) | 5.15.61 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.16 (including) | 5.18.18 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.19 (including) | 5.19.2 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/77087a04c8fd554134bddcb8a9ff87b21f357926
- https://git.kernel.org/stable/c/80b1465b2ae81ebb59bbe62bcb7a7f7d4e9ece6f
- https://git.kernel.org/stable/c/941ef6997f9db704fe4fd62fc01e420fdd5048b2
- https://git.kernel.org/stable/c/995fb2874bb5696357846a91e59181c600e6aac8
- https://git.kernel.org/stable/c/a74322d4b897ddc268b340c4a397f6066c2f945d
- https://git.kernel.org/stable/c/babd7b0124650ab71a6487e38588b8659b3aa2dc
- https://git.kernel.org/stable/c/d10855876a6f47add6ff621cef25cc0171dac162
- https://git.kernel.org/stable/c/d5730780e9ea84e5476752a47c749036c6a74af5