In the Linux kernel, the following vulnerability has been resolved: Input: sparcspkr - fix refcount leak in bbc_beep_probe of_find_node_by_path() calls of_find_node_opts_by_path(), which returns a node pointer with refcount incremented, we should use of_node_put() on it when done. Add missing of_node_put() to avoid refcount leak.

Metrics

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Linux
  • Linux Kernel

Configuration 1 [-]

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

No data.

References
Link Providers
https://git.kernel.org/stable/c/1124e39fea0e2fdb4202f95b716cb97cc7de7cc7 cve-icon cve-icon
https://git.kernel.org/stable/c/2f51db16cb740ff90086189a1ef2581eab665591 cve-icon cve-icon
https://git.kernel.org/stable/c/353bc58ac6c782d4dcde9136a91d1f90867938fe cve-icon cve-icon
https://git.kernel.org/stable/c/418b6a3e12f75638abc5673eb76cb32127d0ab13 cve-icon cve-icon
https://git.kernel.org/stable/c/6e07ccc7d56130f760d23f67a70c45366c07debc cve-icon cve-icon
https://git.kernel.org/stable/c/73d6f42d8d86648bec2e73d34fe1648cb6d23e08 cve-icon cve-icon
https://git.kernel.org/stable/c/bbc2b0ce6042dd3117827f10ea8cb67e0ab786da cve-icon cve-icon
https://git.kernel.org/stable/c/c8994b30d71d64d5dcc9bc0edbfdf367171aa96f cve-icon cve-icon
https://git.kernel.org/stable/c/f13064b0f2c651a3fbb0749932795c6fd21556a8 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025022657-CVE-2022-49438-30c7@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49438 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49438 cve-icon
History

Mon, 17 Mar 2025 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Linux
Linux linux Kernel
Weaknesses NVD-CWE-Other
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel

Thu, 27 Feb 2025 01:45:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Moderate

Wed, 26 Feb 2025 02:45:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: Input: sparcspkr - fix refcount leak in bbc_beep_probe of_find_node_by_path() calls of_find_node_opts_by_path(), which returns a node pointer with refcount incremented, we should use of_node_put() on it when done. Add missing of_node_put() to avoid refcount leak.
Title Input: sparcspkr - fix refcount leak in bbc_beep_probe
References
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-02-26T02:12:53.007Z

Updated: 2025-02-26T02:12:53.007Z

Reserved: 2025-02-26T02:08:31.570Z

Link: CVE-2022-49438

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2025-02-26T07:01:20.240

Modified: 2025-03-17T19:53:51.830

Link: CVE-2022-49438

cve-icon Redhat

Severity : Moderate

Publid Date: 2025-02-26T00:00:00Z

Links: CVE-2022-49438 - Bugzilla