Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: spi: uniphier: fix reference count leak in uniphier_spi_probe() The issue happens in several error paths in uniphier_spi_probe(). When either dma_get_slave_caps() or devm_spi_register_master() returns an error code, the function forgets to decrease the refcount of both `dma_rx` and `dma_tx` objects, which may lead to refcount leaks. Fix it by decrementing the reference count of specific objects in those error paths.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 5.6, < 5.10.99 |
References
- https://git.kernel.org/stable/c/37c2c83ca4f1ef4b6908181ac98e18360af89b42Patch
- https://git.kernel.org/stable/c/447c3d4046d7b54052d07d8b27e15e6edea5662cPatch
- https://git.kernel.org/stable/c/dd00b4f8f768d81c3788a8ac88fdb3d745e55ea3Patch
- https://git.kernel.org/stable/c/e895e067d73e154b1ebc84a124e00831e311d9b0Patch
- https://git.kernel.org/stable/c/37c2c83ca4f1ef4b6908181ac98e18360af89b42Patch
- https://git.kernel.org/stable/c/447c3d4046d7b54052d07d8b27e15e6edea5662cPatch
- https://git.kernel.org/stable/c/dd00b4f8f768d81c3788a8ac88fdb3d745e55ea3Patch
- https://git.kernel.org/stable/c/e895e067d73e154b1ebc84a124e00831e311d9b0Patch
FAQ
What is CVE-2022-48723?
CVE-2022-48723 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: spi: uniphier: fix reference count leak in uniphier_spi_probe() The issue happens in several error paths in uniphier_spi_probe(). ...
How severe is CVE-2022-48723?
CVE-2022-48723 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-48723?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.