CVE-2022-49242

ASoC: mxs: Fix error handling in mxs_sgtl5000_probe

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

MITRE
PS

In the Linux kernel, the following vulnerability has been resolved: ASoC: mxs: Fix error handling in mxs_sgtl5000_probe This function only calls of_node_put() in the regular path.
And it will cause refcount leak in error paths.
For example, when codec_np is NULL, saif_np[0] and saif_np[1]
are not NULL, it will cause leaks. of_node_put() will check if the node pointer is NULL, so we can
call it directly to release the refcount of regular pointers.

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-02-26 CVE Reserved
2025-02-26 CVE Published
2025-05-04 CVE Updated
2025-06-28 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (10)

URL	Tag	Source
https://git.kernel.org/stable/c/e968194b45c4e8077dada75c5bae5660b37628fe	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/f16ad2c0e22687f80e5981c67374023f51c204b9	2022-04-20
https://git.kernel.org/stable/c/790d2628e3fcc819d8f5572eb5615113fb2e727a	2022-04-20
https://git.kernel.org/stable/c/f8d38056bcd220ea6f0802a5586d1a12ebcce849	2022-04-15
https://git.kernel.org/stable/c/67e12f1cb2f97468c12b59e21975eaa0f332e7d2	2022-04-15
https://git.kernel.org/stable/c/86b6cf989437e694fd0a15782b5a513853a739e0	2022-04-08
https://git.kernel.org/stable/c/44acdaf7acb60054d872bed18ce0e7db8ce900ce	2022-04-08
https://git.kernel.org/stable/c/d2923b48d99fe663cb93d8b481c93299fcd68656	2022-04-08
https://git.kernel.org/stable/c/8d880226c86f37624e2a5f3c6d92ac0ec3375f96	2022-04-08
https://git.kernel.org/stable/c/6ae0a4d8fec551ec581d620f0eb1fe31f755551c	2022-03-08

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.5 < 4.9.311 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.5 < 4.9.311"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.5 < 4.14.276 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.5 < 4.14.276"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.5 < 4.19.238 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.5 < 4.19.238"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.5 < 5.4.189 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.5 < 5.4.189"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.5 < 5.10.110 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.5 < 5.10.110"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.5 < 5.15.33 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.5 < 5.15.33"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.5 < 5.16.19 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.5 < 5.16.19"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.5 < 5.17.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.5 < 5.17.2"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.5 < 5.18 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.5 < 5.18"		en		Affected