CVE-2022-49016
- Source
- https://cve.org/CVERecord?id=CVE-2022-49016
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49016.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-49016
- Downstream
- Related
- Published
- 2024-10-21T20:06:25.294Z
- Modified
- 2026-03-20T12:22:05.741134Z
- Summary
- net: mdiobus: fix unbalanced node reference count
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
net: mdiobus: fix unbalanced node reference count
I got the following report while doing device(mscc-miim) load test with CONFIGOFUNITTEST and CONFIGOFDYNAMIC enabled:
OF: ERROR: memory leak, expected refcount 1 instead of 2, ofnodeget()/ofnodeput() unbalanced - destroy cset entry: attach overlay node /spi/soc@0/mdio@7107009c/ethernet-phy@0
If the 'fwnode' is not an acpi node, the refcount is get in fwnodemdiobusphydeviceregister(), but it has never been put when the device is freed in the normal path. So call fwnodehandleput() in phydevicerelease() to avoid leak.
If it's an acpi node, it has never been get, but it's put in the error path, so call fwnodehandleget() before phydeviceregister() to keep get/put operation balanced.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49016.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/2708b357440427d6a9fee667eb7b8307f4625adc
- https://git.kernel.org/stable/c/543d917f691ab06885ee779c862065899eaa4251
- https://git.kernel.org/stable/c/cdde1560118f82498fc9e9a7c1ef7f0ef7755891
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49016.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-49016
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git