VYPR
Medium severity5.5NVD Advisory· Published Mar 27, 2025· Updated Jun 17, 2026

CVE-2022-49752

CVE-2022-49752

Description

In the Linux kernel, the following vulnerability has been resolved:

device property: fix of node refcount leak in fwnode_graph_get_next_endpoint()

The 'parent' returned by fwnode_graph_get_port_parent() with refcount incremented when 'prev' is not NULL, it needs be put when finish using it.

Because the parent is const, introduce a new variable to store the returned fwnode, then put it before returning from fwnode_graph_get_next_endpoint().

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • Linux/Kernel6 versions
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=5.15,<5.15.91
    • cpe:2.3:o:linux:linux_kernel:6.2:rc1:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:6.2:rc2:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:6.2:rc3:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:6.2:rc4:*:*:*:*:*:*
    • (no CPE)
  • osv-coords
    Range: >= 5.15.0, < 5.15.91

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.