In the Linux kernel, the following vulnerability has been resolved:
irqchip/gic-v3: Fix error handling in gicpopulateppi_partitions
ofgetchildbyname() returns a node pointer with refcount incremented, we should use ofnodeput() on it when not need anymore. When kcalloc fails, it missing ofnodeput() and results in refcount leak. Fix this by goto outputnode label.
[ { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ec8401a429ffee34ccf38cebf3443f8d5ae6cb0d", "target": { "function": "gic_populate_ppi_partitions", "file": "drivers/irqchip/irq-gic-v3.c" }, "signature_type": "Function", "deprecated": false, "digest": { "function_hash": "87899257098882428680362794456425828546", "length": 1686.0 }, "signature_version": "v1", "id": "CVE-2022-49716-1aa69c12" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@58e67c81e229351027d28c610638378606e33a08", "target": { "file": "drivers/irqchip/irq-gic-v3.c" }, "signature_type": "Line", "deprecated": false, "digest": { "line_hashes": [ "116324079099994093845235439260412104323", "118809756705487264592952471260473574589", "32030242434613651829068599426569485165", "28716260206742767329941345110180659245" ], "threshold": 0.9 }, "signature_version": "v1", "id": "CVE-2022-49716-1f8deef5" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7c9dd9d23f26dabcfb14148b9acdfba540418b19", "target": { "file": "drivers/irqchip/irq-gic-v3.c" }, "signature_type": "Line", "deprecated": false, "digest": { "line_hashes": [ "116324079099994093845235439260412104323", "118809756705487264592952471260473574589", "32030242434613651829068599426569485165", "28716260206742767329941345110180659245" ], "threshold": 0.9 }, "signature_version": "v1", "id": "CVE-2022-49716-243988c6" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@58e67c81e229351027d28c610638378606e33a08", "target": { "function": "gic_populate_ppi_partitions", "file": "drivers/irqchip/irq-gic-v3.c" }, "signature_type": "Function", "deprecated": false, "digest": { "function_hash": "87899257098882428680362794456425828546", "length": 1686.0 }, "signature_version": "v1", "id": "CVE-2022-49716-3db081bb" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0b325d993995a321f6ab4e6c51f0504ec092bf5b", "target": { "file": "drivers/irqchip/irq-gic-v3.c" }, "signature_type": "Line", "deprecated": false, "digest": { "line_hashes": [ "116324079099994093845235439260412104323", "118809756705487264592952471260473574589", "32030242434613651829068599426569485165", "28716260206742767329941345110180659245" ], "threshold": 0.9 }, "signature_version": "v1", "id": "CVE-2022-49716-3f524482" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0b325d993995a321f6ab4e6c51f0504ec092bf5b", "target": { "function": "gic_populate_ppi_partitions", "file": "drivers/irqchip/irq-gic-v3.c" }, "signature_type": "Function", "deprecated": false, "digest": { "function_hash": "87899257098882428680362794456425828546", "length": 1686.0 }, "signature_version": "v1", "id": "CVE-2022-49716-a3ae3b97" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ec8401a429ffee34ccf38cebf3443f8d5ae6cb0d", "target": { "file": "drivers/irqchip/irq-gic-v3.c" }, "signature_type": "Line", "deprecated": false, "digest": { "line_hashes": [ "116324079099994093845235439260412104323", "118809756705487264592952471260473574589", "32030242434613651829068599426569485165", "28716260206742767329941345110180659245" ], "threshold": 0.9 }, "signature_version": "v1", "id": "CVE-2022-49716-a45982b7" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c83c34c57798fc41faefcf078be78683db2f4beb", "target": { "file": "drivers/irqchip/irq-gic-v3.c" }, "signature_type": "Line", "deprecated": false, "digest": { "line_hashes": [ "116324079099994093845235439260412104323", "118809756705487264592952471260473574589", "32030242434613651829068599426569485165", "28716260206742767329941345110180659245" ], "threshold": 0.9 }, "signature_version": "v1", "id": "CVE-2022-49716-b6f2ab96" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c83c34c57798fc41faefcf078be78683db2f4beb", "target": { "function": "gic_populate_ppi_partitions", "file": "drivers/irqchip/irq-gic-v3.c" }, "signature_type": "Function", "deprecated": false, "digest": { "function_hash": "87899257098882428680362794456425828546", "length": 1686.0 }, "signature_version": "v1", "id": "CVE-2022-49716-ce09ff33" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7c9dd9d23f26dabcfb14148b9acdfba540418b19", "target": { "function": "gic_populate_ppi_partitions", "file": "drivers/irqchip/irq-gic-v3.c" }, "signature_type": "Function", "deprecated": false, "digest": { "function_hash": "87899257098882428680362794456425828546", "length": 1686.0 }, "signature_version": "v1", "id": "CVE-2022-49716-f7c6db14" } ]