7.8
CVE-2022-50190
- EPSS 0.21%
- Veröffentlicht 18.06.2025 11:03:36
- Zuletzt bearbeitet 19.11.2025 12:50:07
- CVE-Watchlists
- Unerledigt
spi: Fix simplification of devm_spi_register_controller
In the Linux kernel, the following vulnerability has been resolved:
spi: Fix simplification of devm_spi_register_controller
This reverts commit 59ebbe40fb51 ("spi: simplify
devm_spi_register_controller").
If devm_add_action() fails in devm_add_action_or_reset(),
devm_spi_unregister() will be called, it decreases the
refcount of 'ctlr->dev' to 0, then it will cause uaf in
the drivers that calling spi_put_controller() in error path.Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.13 < 5.15.61
Linux ≫ Linux Kernel Version >= 5.16 < 5.18.18
Linux ≫ Linux Kernel Version >= 5.19 < 5.19.2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.21% | 0.115 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-416 Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
https://git.kernel.org/stable/c/445fb9c19cf45bd9472fd9babaa31c5e6c7d2720
https://git.kernel.org/stable/c/34bab623ebfc08398499e463396b81abb4abe01e
https://git.kernel.org/stable/c/3c6bd448442b6c3f6843ac70d57201a13478dd47
https://git.kernel.org/stable/c/43cc5a0afe4184a7fafe1eba32b5a11bb69c9ce0