CVE-2022-49591
- Source
- https://cve.org/CVERecord?id=CVE-2022-49591
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49591.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-49591
- Downstream
- Related
- Published
- 2025-02-26T02:23:24.078Z
- Modified
- 2026-03-11T06:04:54.101488Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- net: dsa: microchip: ksz_common: Fix refcount leak bug
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
net: dsa: microchip: ksz_common: Fix refcount leak bug
In kszswitchregister(), we should call ofnodeput() for the reference returned by ofgetchildbyname() which has increased the refcount.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49591.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/4165e02716518bbbe9c9104b39530d40928bc7ce
- https://git.kernel.org/stable/c/88ec2ff42da3ac93b2437dc52fe25cd4372148e6
- https://git.kernel.org/stable/c/a14bd7475452c51835dd5a0cee4c8fa48dd0b539
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49591.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-49591
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced912aae27c6af6605eae967ab540c5e26bd76d421Fixed88ec2ff42da3ac93b2437dc52fe25cd4372148e6Fixed4165e02716518bbbe9c9104b39530d40928bc7ceFixeda14bd7475452c51835dd5a0cee4c8fa48dd0b539
Affected versions
v5.*
v5.10
v5.10-rc1
v5.10-rc2
v5.10-rc3
v5.10-rc4
v5.10-rc5
v5.10-rc6
v5.10-rc7
v5.11
v5.11-rc1
v5.11-rc2
v5.11-rc3
v5.11-rc4
v5.11-rc5
v5.11-rc6
v5.11-rc7
v5.12
v5.12-rc1
v5.12-rc1-dontuse
v5.12-rc2
v5.12-rc3
v5.12-rc4
v5.12-rc5
v5.12-rc6
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.6
v5.15.7
v5.15.8
v5.15.9
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.18.1
v5.18.10
v5.18.11
v5.18.12
v5.18.13
v5.18.14
v5.18.2
v5.18.3
v5.18.4
v5.18.5
v5.18.6
v5.18.7
v5.18.8
v5.18.9
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.9
v5.9-rc7
v5.9-rc8
Database specific
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49591.json"
vanir_signatures
[
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@88ec2ff42da3ac93b2437dc52fe25cd4372148e6",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49591-064f5f5d",
"digest": {
"threshold": 0.9,
"line_hashes": [
"246035264378274748816609508712067603970",
"74984748077984529950175094052476843587",
"73210838379187462642610484864530122137",
"127710791970752240581559447638737969727",
"240368309099586346432415463798388989980",
"149087285374766116714713838407145358485",
"334608969921625218496214998072617961952",
"15497787798785980754407841734024387734",
"309142734172216333329171666900358865064",
"25086380597096839624643835169740557556",
"137413086412584138295007854238086665107",
"125663070611465837170185902875543404536",
"97601423702324502703365104150378549103",
"309632333503132348368023104306394640654",
"155701932101475724651617727912896111937"
]
},
"signature_type": "Line",
"target": {
"file": "drivers/net/dsa/microchip/ksz_common.c"
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4165e02716518bbbe9c9104b39530d40928bc7ce",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49591-10f50bf1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"246035264378274748816609508712067603970",
"74984748077984529950175094052476843587",
"73210838379187462642610484864530122137",
"127710791970752240581559447638737969727",
"240368309099586346432415463798388989980",
"149087285374766116714713838407145358485",
"334608969921625218496214998072617961952",
"15497787798785980754407841734024387734",
"309142734172216333329171666900358865064",
"25086380597096839624643835169740557556",
"137413086412584138295007854238086665107",
"125663070611465837170185902875543404536",
"97601423702324502703365104150378549103",
"309632333503132348368023104306394640654",
"196740618685242380190829217884660192184"
]
},
"signature_type": "Line",
"target": {
"file": "drivers/net/dsa/microchip/ksz_common.c"
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4165e02716518bbbe9c9104b39530d40928bc7ce",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49591-267e00df",
"digest": {
"length": 1981.0,
"function_hash": "101992302477660434514599232633724816881"
},
"signature_type": "Function",
"target": {
"file": "drivers/net/dsa/microchip/ksz_common.c",
"function": "ksz_switch_register"
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@88ec2ff42da3ac93b2437dc52fe25cd4372148e6",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49591-46eec3bd",
"digest": {
"length": 1740.0,
"function_hash": "58044688641348519513025097223941049105"
},
"signature_type": "Function",
"target": {
"file": "drivers/net/dsa/microchip/ksz_common.c",
"function": "ksz_switch_register"
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a14bd7475452c51835dd5a0cee4c8fa48dd0b539",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49591-9261fe6a",
"digest": {
"length": 2735.0,
"function_hash": "123719990890526392910174959092803808764"
},
"signature_type": "Function",
"target": {
"file": "drivers/net/dsa/microchip/ksz_common.c",
"function": "ksz_switch_register"
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a14bd7475452c51835dd5a0cee4c8fa48dd0b539",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49591-fe5994e2",
"digest": {
"threshold": 0.9,
"line_hashes": [
"246035264378274748816609508712067603970",
"74984748077984529950175094052476843587",
"73210838379187462642610484864530122137",
"127710791970752240581559447638737969727",
"240368309099586346432415463798388989980",
"149087285374766116714713838407145358485",
"334608969921625218496214998072617961952",
"15497787798785980754407841734024387734",
"309142734172216333329171666900358865064",
"25086380597096839624643835169740557556",
"137413086412584138295007854238086665107",
"125663070611465837170185902875543404536",
"97601423702324502703365104150378549103",
"309632333503132348368023104306394640654",
"196740618685242380190829217884660192184"
]
},
"signature_type": "Line",
"target": {
"file": "drivers/net/dsa/microchip/ksz_common.c"
}
}
]