Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix reset-controller leak on probe errors Make sure to release the lane reset controller in case of a late probe error (e.g. probe deferral). Note that due to the reset controller being defined in devicetree in "lane" child nodes, devm_reset_control_get_exclusive() cannot be used directly.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 4.12, < 4.14.283 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/2156dc390402043ba5982489c6625adcb0b0975cPatch
- https://git.kernel.org/stable/c/4d2900f20edfe541f75756a00deeb2ffe7c66bc1Patch
- https://git.kernel.org/stable/c/7ac21b24af859c097eb4034e93430056068f8f31Patch
- https://git.kernel.org/stable/c/8c03eb0c8982677b4e17174073a011788891304dPatch
- https://git.kernel.org/stable/c/a39d9eccb333b8c07c43ebea1c6dfda122378a0fPatch
- https://git.kernel.org/stable/c/b7b5fbcaac5355e2e695dc0c08a0fcf248250388Patch
- https://git.kernel.org/stable/c/ba173a6f8d8dffed64bb13ab23081bdddfb464f0Patch
- https://git.kernel.org/stable/c/feb05b10b3ed3ae21b851520a0d0b71685439517Patch
FAQ
What is CVE-2022-49396?
CVE-2022-49396 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix reset-controller leak on probe errors Make sure to release the lane reset controller in case of a late probe er...
How severe is CVE-2022-49396?
CVE-2022-49396 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-49396?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.