CVE-2022-49310

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-49310

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49310.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-49310

Downstream

DEBIAN-CVE-2022-49310

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1241-1

UBUNTU-CVE-2022-49310

Related

Published

2025-02-26T02:10:40.664Z

Modified

2025-11-28T15:18:22.577487Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

char: xillybus: fix a refcount leak in cleanup_dev()

Details

In the Linux kernel, the following vulnerability has been resolved:

char: xillybus: fix a refcount leak in cleanup_dev()

usbgetdev is called in xillyusbprobe. So it is better to call usbput_dev before xdev is released.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49310.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

a53d1202aef122894b6e46116a92174a9123db5d

Fixed

bc8fceda3b89006e8a7dda8a097d36045d044c25

Fixed

21f1f167d727f3f857e26d509ef5a6d47fd31bc3

Fixed

e277b95acdab84cd5d2f8d537a37aef6d21e988b

Fixed

b67d19662fdee275c479d21853bc1239600a798f

Affected versions

v5.*

v5.13

v5.13-rc3

v5.13-rc4

v5.13-rc5

v5.13-rc6

v5.13-rc7

v5.14

v5.14-rc1

v5.14-rc2

v5.14-rc3

v5.14-rc4

v5.14-rc5

v5.14-rc6

v5.14-rc7

v5.15

v5.15-rc1

v5.15-rc2

v5.15-rc3

v5.15-rc4

v5.15-rc5

v5.15-rc6

v5.15-rc7

v5.15.1

v5.15.10

v5.15.11

v5.15.12

v5.15.13

v5.15.14

v5.15.15

v5.15.16

v5.15.17

v5.15.18

v5.15.19

v5.15.2

v5.15.20

v5.15.21

v5.15.22

v5.15.23

v5.15.24

v5.15.25

v5.15.26

v5.15.27

v5.15.28

v5.15.29

v5.15.3

v5.15.30

v5.15.31

v5.15.32

v5.15.33

v5.15.34

v5.15.35

v5.15.36

v5.15.37

v5.15.38

v5.15.39

v5.15.4

v5.15.40

v5.15.41

v5.15.42

v5.15.43

v5.15.44

v5.15.45

v5.15.46

v5.15.5

v5.15.6

v5.15.7

v5.15.8

v5.15.9

v5.16

v5.16-rc1

v5.16-rc2

v5.16-rc3

v5.16-rc4

v5.16-rc5

v5.16-rc6

v5.16-rc7

v5.16-rc8

v5.17

v5.17-rc1

v5.17-rc2

v5.17-rc3

v5.17-rc4

v5.17-rc5

v5.17-rc6

v5.17-rc7

v5.17-rc8

v5.17.1

v5.17.10

v5.17.11

v5.17.12

v5.17.13

v5.17.14

v5.17.2

v5.17.3

v5.17.4

v5.17.5

v5.17.6

v5.17.7

v5.17.8

v5.17.9

v5.18

v5.18-rc1

v5.18-rc2

v5.18-rc3

v5.18-rc4

v5.18-rc5

v5.18-rc6

v5.18-rc7

v5.18.1

v5.18.2

v5.18.3

Database specific

vanir_signatures

[
    {
        "signature_type": "Line",
        "id": "CVE-2022-49310-168e4f4f",
        "digest": {
            "line_hashes": [
                "240292438291876432005567869559561130636",
                "63334059489126623317274355122553607902",
                "277154291820279558003767485340407837776"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/char/xillybus/xillyusb.c"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e277b95acdab84cd5d2f8d537a37aef6d21e988b",
        "deprecated": false
    },
    {
        "signature_type": "Function",
        "id": "CVE-2022-49310-193ab775",
        "digest": {
            "function_hash": "92704978330297074235328908246052576719",
            "length": 331.0
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/char/xillybus/xillyusb.c",
            "function": "cleanup_dev"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e277b95acdab84cd5d2f8d537a37aef6d21e988b",
        "deprecated": false
    },
    {
        "signature_type": "Function",
        "id": "CVE-2022-49310-24d2b63b",
        "digest": {
            "function_hash": "92704978330297074235328908246052576719",
            "length": 331.0
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/char/xillybus/xillyusb.c",
            "function": "cleanup_dev"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@21f1f167d727f3f857e26d509ef5a6d47fd31bc3",
        "deprecated": false
    },
    {
        "signature_type": "Function",
        "id": "CVE-2022-49310-31f51d51",
        "digest": {
            "function_hash": "92704978330297074235328908246052576719",
            "length": 331.0
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/char/xillybus/xillyusb.c",
            "function": "cleanup_dev"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bc8fceda3b89006e8a7dda8a097d36045d044c25",
        "deprecated": false
    },
    {
        "signature_type": "Line",
        "id": "CVE-2022-49310-494337b6",
        "digest": {
            "line_hashes": [
                "240292438291876432005567869559561130636",
                "63334059489126623317274355122553607902",
                "277154291820279558003767485340407837776"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/char/xillybus/xillyusb.c"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bc8fceda3b89006e8a7dda8a097d36045d044c25",
        "deprecated": false
    },
    {
        "signature_type": "Line",
        "id": "CVE-2022-49310-782b163a",
        "digest": {
            "line_hashes": [
                "240292438291876432005567869559561130636",
                "63334059489126623317274355122553607902",
                "277154291820279558003767485340407837776"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/char/xillybus/xillyusb.c"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b67d19662fdee275c479d21853bc1239600a798f",
        "deprecated": false
    },
    {
        "signature_type": "Line",
        "id": "CVE-2022-49310-8efeef1b",
        "digest": {
            "line_hashes": [
                "240292438291876432005567869559561130636",
                "63334059489126623317274355122553607902",
                "277154291820279558003767485340407837776"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/char/xillybus/xillyusb.c"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@21f1f167d727f3f857e26d509ef5a6d47fd31bc3",
        "deprecated": false
    },
    {
        "signature_type": "Function",
        "id": "CVE-2022-49310-e1ea5dfc",
        "digest": {
            "function_hash": "92704978330297074235328908246052576719",
            "length": 331.0
        },
        "signature_version": "v1",
        "target": {
            "file": "drivers/char/xillybus/xillyusb.c",
            "function": "cleanup_dev"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b67d19662fdee275c479d21853bc1239600a798f",
        "deprecated": false
    }
]

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

5.14.0

Fixed

5.15.47

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

5.17.15

Type: ECOSYSTEM
Events: Introduced

5.18.0

Fixed

5.18.4