PT-2025-8169 · Linux+2 · Linux Kernel+2

Miaoqian Lin

Published

2025-02-26

Updated

2025-04-14

CVE-2022-49241

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A issue in the Linux kernel's ASoC atmel module has been identified, specifically in the sam9x5 wm8731 driver probe function. The problem arises from incorrect error handling, leading to a refcount leak when of parse phandle() returns a device node pointer with an incremented refcount. This leak occurs because of node put() is only called in the regular path, not in the error path.

Recommendations For the affected Linux kernel versions, consider applying a patch that ensures of node put() is called in both the regular and error paths of the sam9x5 wm8731 driver probe function to prevent refcount leaks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2022-49241

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1241-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

Affected Products

Astra Linux

Linux Kernel

Suse

PT-2025-8169 · Linux+2 · Linux Kernel+2

CVE-2022-49241

Related Identifiers

Affected Products

References · 1329