PT-2024-9266 · Linux+3 · Linux Kernel+3

Greg Kroah-Hartman

Published

2024-06-20

Updated

2024-12-04

CVE-2022-48723

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: The issue is related to a reference count leak in the uniphier spi probe() function. This occurs when either dma get slave caps() or devm spi register master() returns an error code, causing the function to forget to decrease the refcount of both dma rx and dma tx objects. This may lead to refcount leaks. The issue happens in several error paths in uniphier spi probe().

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401

Related Identifiers

BDU:2024-10954

CVE-2022-48723

OPENSUSE-SU-2024_2372-1

OPENSUSE-SU-2024_2394-1

SUSE-SU-2024:2372-1

SUSE-SU-2024:2394-1

SUSE-SU-2024:2902-1

SUSE-SU-2024:2929-1

SUSE-SU-2024:2939-1

Affected Products

Astra Linux

Linux Kernel

Red Os

Suse

PT-2024-9266 · Linux+3 · Linux Kernel+3

CVE-2022-48723

Weakness Enumeration

Related Identifiers

Affected Products

References · 1206