CVE-2022-50868 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: hwrng: amd - Fix PCI device refcount leak for_each_pci_dev() is implemented by pci_get_device(). The comment of pci_get_device() says that it will increase the reference count for the returned pci_dev and also decrease the reference count for the input pci_dev @from if it is not NULL. If we break for_each_pci_dev() loop with pdev not NULL, we need to call pci_dev_put() to decrease the reference count. Add the missing pci_dev_put() for the normal and error path.

PUBLISHED Reserved 2025-12-30 | Published 2025-12-30 | Updated 2025-12-30 | Assigner Linux

Product status

Default status

unaffected

96d63c0297ccfd6d9059c614b3f5555d9441a2b3 (git) before f1c97f72ffd504f49882774e2ab689d982dc7afc

affected

96d63c0297ccfd6d9059c614b3f5555d9441a2b3 (git) before 526c316948819d3ecd2bb20fe5e2580c51a1b760

affected

96d63c0297ccfd6d9059c614b3f5555d9441a2b3 (git) before e246f5eff26055bdcb61a2cc99c50af72a19680f

affected

96d63c0297ccfd6d9059c614b3f5555d9441a2b3 (git) before 1199f8e02941b326c60ab71a63002b7c80e38212

affected

96d63c0297ccfd6d9059c614b3f5555d9441a2b3 (git) before 5998e5c30e839f73e62cb29e0d9617b0d16ccba3

affected

96d63c0297ccfd6d9059c614b3f5555d9441a2b3 (git) before 2b79a5e560779b35e1164d57ae35c48b43373082

affected

96d63c0297ccfd6d9059c614b3f5555d9441a2b3 (git) before cb348c7908631dd9f60083a0a1542eab055d3edf

affected

96d63c0297ccfd6d9059c614b3f5555d9441a2b3 (git) before 2e10ecd012ae2b2a374b34f307e9bc1e6096c03d

affected

96d63c0297ccfd6d9059c614b3f5555d9441a2b3 (git) before ecadb5b0111ea19fc7c240bb25d424a94471eb7d

affected

Default status

affected

2.6.18

affected

Any version before 2.6.18

unaffected

4.9.337 (semver)

unaffected

4.14.303 (semver)

unaffected

4.19.270 (semver)

unaffected

5.4.229 (semver)

unaffected

5.10.163 (semver)

unaffected

5.15.86 (semver)

unaffected

6.0.16 (semver)

unaffected

6.1.2 (semver)

unaffected

6.2 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/f1c97f72ffd504f49882774e2ab689d982dc7afc

git.kernel.org/...c/526c316948819d3ecd2bb20fe5e2580c51a1b760

git.kernel.org/...c/e246f5eff26055bdcb61a2cc99c50af72a19680f

git.kernel.org/...c/1199f8e02941b326c60ab71a63002b7c80e38212

git.kernel.org/...c/5998e5c30e839f73e62cb29e0d9617b0d16ccba3

git.kernel.org/...c/2b79a5e560779b35e1164d57ae35c48b43373082

git.kernel.org/...c/cb348c7908631dd9f60083a0a1542eab055d3edf

git.kernel.org/...c/2e10ecd012ae2b2a374b34f307e9bc1e6096c03d

git.kernel.org/...c/ecadb5b0111ea19fc7c240bb25d424a94471eb7d

cve.org (CVE-2022-50868)

nvd.nist.gov (CVE-2022-50868)

Download JSON