Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

Vulnerability Intelligence

Customers

Vulnerability IntelligenceCVE-2022-49447

CVE-2022-49447

MEDIUM5.5

ARM: hisi: Add missing of_node_put after of_find_compatible_node

Published Feb 26, 2025

Modified 2 months ago

Details

In the Linux kernel, the following vulnerability has been resolved:

ARM: hisi: Add missing of_node_put after of_find_compatible_node

of_find_compatible_node will increment the refcount of the returned device_node. Calling of_node_put() to avoid the refcount leak

References

WEB

https://git.kernel.org/stable/c/21a3effe446dd6dc5eed7fe897c2f9b88c9a5d6d

WEB

https://git.kernel.org/stable/c/45d211668d33c49d73f5213e8c2b58468108647c

WEB

https://git.kernel.org/stable/c/46cb7868811d025c3d29c10d18b3422db1cf20d5

WEB

https://git.kernel.org/stable/c/9bc72e47d4630d58a840a66a869c56b29554cfe4

WEB

https://git.kernel.org/stable/c/a3265a9440030068547a20dfee646666f3ca5278

WEB

https://git.kernel.org/stable/c/cafaaae4bb9ce84a2791fa29bf6907a9466c3883

WEB

https://git.kernel.org/stable/c/dd4be8ecfb41a29e7c4e551b4e866157ce4a3429

WEB

https://git.kernel.org/stable/c/e109058165137ef42841abd989f080adfefa14fa

WEB

https://git.kernel.org/stable/c/f8da78b2bae1f54746647a2bb44f8bd6025c57af

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2022-49447

CVSS Analysis

CVSS v3.1

5.5

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

HighA:H

5.5/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Ecosystems

Timeline

PublishedFeb 26, 2025

ModifiedDec 23, 2025

CVE-2022-49447 | Mondoo Vulnerability Intelligence