CVE-2022-50017

mips: cavium-octeon: Fix missing of_node_put() in octeon2_usb_clocks_start

Severity Score

5.5

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

MITRE
TN

In the Linux kernel, the following vulnerability has been resolved: mips: cavium-octeon: Fix missing of_node_put() in octeon2_usb_clocks_start We should call of_node_put() for the reference 'uctl_node' returned by
of_get_parent() which will increase the refcount. Otherwise, there will
be a refcount leak bug.

In the Linux kernel, the following vulnerability has been resolved: mips: cavium-octeon: Fix missing of_node_put() in octeon2_usb_clocks_start We should call of_node_put() for the reference 'uctl_node' returned by of_get_parent() which will increase the refcount. Otherwise, there will be a refcount leak bug.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-06-18 CVE Reserved
2025-06-18 CVE Published
2025-06-18 CVE Updated
2025-06-24 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (8)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/9d1afa0169a84dcd5b79901d792edeb8403684ab	2022-08-25
https://git.kernel.org/stable/c/af87a469695dc2b2419b2fdff0bf41db5265b325	2022-08-25
https://git.kernel.org/stable/c/c06166a484eece51916dd700a870e53356b7e1bc	2022-08-25
https://git.kernel.org/stable/c/1b49707df679b5510ed06ace7378ddc2aec5c3fb	2022-08-25
https://git.kernel.org/stable/c/1e39037e44d7fa3728686af146f9285ea197097d	2022-08-25
https://git.kernel.org/stable/c/7822d994eb9579a1df4cdbc315db090a041e50f3	2022-08-25
https://git.kernel.org/stable/c/a80016c40cc797c7f3e5a705b8e12ae447280335	2022-08-25
https://git.kernel.org/stable/c/7a9f743ceead60ed454c46fbc3085ee9a79cbebb	2022-07-05

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 4.9.326 Search vendor "Linux" for product "Linux Kernel" and version " < 4.9.326"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 4.14.291 Search vendor "Linux" for product "Linux Kernel" and version " < 4.14.291"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 4.19.256 Search vendor "Linux" for product "Linux Kernel" and version " < 4.19.256"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.4.211 Search vendor "Linux" for product "Linux Kernel" and version " < 5.4.211"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.10.138 Search vendor "Linux" for product "Linux Kernel" and version " < 5.10.138"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.15.63 Search vendor "Linux" for product "Linux Kernel" and version " < 5.15.63"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.19.4 Search vendor "Linux" for product "Linux Kernel" and version " < 5.19.4"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 6.0 Search vendor "Linux" for product "Linux Kernel" and version " < 6.0"		en		Affected