CVE-2022-49310

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2022-49310
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49310.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-49310
Downstream
Related
Published
2025-02-26T02:10:40.664Z
Modified
2025-11-28T15:18:22.577487Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
char: xillybus: fix a refcount leak in cleanup_dev()
Details

In the Linux kernel, the following vulnerability has been resolved:

char: xillybus: fix a refcount leak in cleanup_dev()

usbgetdev is called in xillyusbprobe. So it is better to call usbput_dev before xdev is released.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49310.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
a53d1202aef122894b6e46116a92174a9123db5d
Fixed
bc8fceda3b89006e8a7dda8a097d36045d044c25
Fixed
21f1f167d727f3f857e26d509ef5a6d47fd31bc3
Fixed
e277b95acdab84cd5d2f8d537a37aef6d21e988b
Fixed
b67d19662fdee275c479d21853bc1239600a798f

Affected versions

v5.*

v5.13
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.5
v5.15.6
v5.15.7
v5.15.8
v5.15.9
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.17.1
v5.17.10
v5.17.11
v5.17.12
v5.17.13
v5.17.14
v5.17.2
v5.17.3
v5.17.4
v5.17.5
v5.17.6
v5.17.7
v5.17.8
v5.17.9
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.18.1
v5.18.2
v5.18.3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49310.json"

vanir_signatures

[
    {
        "signature_type": "Line",
        "digest": {
            "line_hashes": [
                "240292438291876432005567869559561130636",
                "63334059489126623317274355122553607902",
                "277154291820279558003767485340407837776"
            ],
            "threshold": 0.9
        },
        "deprecated": false,
        "id": "CVE-2022-49310-168e4f4f",
        "target": {
            "file": "drivers/char/xillybus/xillyusb.c"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e277b95acdab84cd5d2f8d537a37aef6d21e988b"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "92704978330297074235328908246052576719",
            "length": 331.0
        },
        "deprecated": false,
        "id": "CVE-2022-49310-193ab775",
        "target": {
            "function": "cleanup_dev",
            "file": "drivers/char/xillybus/xillyusb.c"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e277b95acdab84cd5d2f8d537a37aef6d21e988b"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "92704978330297074235328908246052576719",
            "length": 331.0
        },
        "deprecated": false,
        "id": "CVE-2022-49310-24d2b63b",
        "target": {
            "function": "cleanup_dev",
            "file": "drivers/char/xillybus/xillyusb.c"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@21f1f167d727f3f857e26d509ef5a6d47fd31bc3"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "92704978330297074235328908246052576719",
            "length": 331.0
        },
        "deprecated": false,
        "id": "CVE-2022-49310-31f51d51",
        "target": {
            "function": "cleanup_dev",
            "file": "drivers/char/xillybus/xillyusb.c"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bc8fceda3b89006e8a7dda8a097d36045d044c25"
    },
    {
        "signature_type": "Line",
        "digest": {
            "line_hashes": [
                "240292438291876432005567869559561130636",
                "63334059489126623317274355122553607902",
                "277154291820279558003767485340407837776"
            ],
            "threshold": 0.9
        },
        "deprecated": false,
        "id": "CVE-2022-49310-494337b6",
        "target": {
            "file": "drivers/char/xillybus/xillyusb.c"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bc8fceda3b89006e8a7dda8a097d36045d044c25"
    },
    {
        "signature_type": "Line",
        "digest": {
            "line_hashes": [
                "240292438291876432005567869559561130636",
                "63334059489126623317274355122553607902",
                "277154291820279558003767485340407837776"
            ],
            "threshold": 0.9
        },
        "deprecated": false,
        "id": "CVE-2022-49310-782b163a",
        "target": {
            "file": "drivers/char/xillybus/xillyusb.c"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b67d19662fdee275c479d21853bc1239600a798f"
    },
    {
        "signature_type": "Line",
        "digest": {
            "line_hashes": [
                "240292438291876432005567869559561130636",
                "63334059489126623317274355122553607902",
                "277154291820279558003767485340407837776"
            ],
            "threshold": 0.9
        },
        "deprecated": false,
        "id": "CVE-2022-49310-8efeef1b",
        "target": {
            "file": "drivers/char/xillybus/xillyusb.c"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@21f1f167d727f3f857e26d509ef5a6d47fd31bc3"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "92704978330297074235328908246052576719",
            "length": 331.0
        },
        "deprecated": false,
        "id": "CVE-2022-49310-e1ea5dfc",
        "target": {
            "function": "cleanup_dev",
            "file": "drivers/char/xillybus/xillyusb.c"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b67d19662fdee275c479d21853bc1239600a798f"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.14.0
Fixed
5.15.47
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
5.17.15
Type
ECOSYSTEM
Events
Introduced
5.18.0
Fixed
5.18.4

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49310.json"