CVE-2022-50139

Опубликовано: 18 июн. 2025

Источник: redhat

CVSS3: 5.5

EPSS Низкий

Описание

In the Linux kernel, the following vulnerability has been resolved: usb: aspeed-vhub: Fix refcount leak bug in ast_vhub_init_desc() We should call of_node_put() for the reference returned by of_get_child_by_name() which has increased the refcount.

A flaw was found in the aspeed-vhub module in the Linux kernel. A missing decrement of the reference count will cause a memory leak, potentially impacting system performance and resulting in a denial of service.

Отчет

This issue has been fixed in Red Hat Enterprise Linux 9.2 via RHSA-2023:2458 [1]. [1]. https://access.redhat.com/errata/RHSA-2023:2458

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 10	kernel	Not affected
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel	Not affected
Red Hat Enterprise Linux 7	kernel-rt	Not affected
Red Hat Enterprise Linux 8	kernel	Not affected
Red Hat Enterprise Linux 8	kernel-rt	Not affected
Red Hat Enterprise Linux 9	kernel-rt	Fix deferred
Red Hat Enterprise Linux 9	kernel	Fixed	RHSA-2023:2458	09.05.2023
Red Hat Enterprise Linux 9	kernel	Fixed	RHSA-2023:2458	09.05.2023

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-911

https://bugzilla.redhat.com/show_bug.cgi?id=2373499kernel: usb: aspeed-vhub: Fix refcount leak bug in ast_vhub_init_desc()

EPSS

Процентиль: 3%

0.00017

Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2022-50139

CVSS3: 5.5

ubuntu

8 месяцев назад

CVE-2022-50139

CVSS3: 5.5

nvd

8 месяцев назад

CVE-2022-50139

CVSS3: 5.5

debian

8 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: u ...

GHSA-q93g-68ww-g9xv

CVSS3: 5.5

github

8 месяцев назад

SUSE-SU-2025:02537-1

suse-cvrf

6 месяцев назад

Security update for the Linux Kernel

EPSS

Процентиль: 3%

0.00017

Низкий

5.5 Medium

CVSS3