CVE-2022-49396

MEDIUM

Linux Kernel - Resource Leak in phy: qcom-qmp

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix reset-controller leak on probe errors Make sure to release the lane reset controller in case of a late probe error (e.g. probe deferral). Note that due to the reset controller being defined in devicetree in "lane" child nodes, devm_reset_control_get_exclusive() cannot be used directly.

References (8)

[Patch] https://git.kernel.org/stable/c/2156dc390402043ba5982489c6625adcb0b0975c

[Patch] https://git.kernel.org/stable/c/4d2900f20edfe541f75756a00deeb2ffe7c66bc1

[Patch] https://git.kernel.org/stable/c/7ac21b24af859c097eb4034e93430056068f8f31

[Patch] https://git.kernel.org/stable/c/8c03eb0c8982677b4e17174073a011788891304d

[Patch] https://git.kernel.org/stable/c/a39d9eccb333b8c07c43ebea1c6dfda122378a0f

[Patch] https://git.kernel.org/stable/c/b7b5fbcaac5355e2e695dc0c08a0fcf248250388

[Patch] https://git.kernel.org/stable/c/ba173a6f8d8dffed64bb13ab23081bdddfb464f0

[Patch] https://git.kernel.org/stable/c/feb05b10b3ed3ae21b851520a0d0b71685439517

Scores

CVSS v3 5.5

EPSS 0.0003

EPSS Percentile 10.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-401

Status published

Affected Products (8)

linux/linux_kernel < 4.14.283

linux/Kernel < 4.14.283linux

linux/Kernel < 4.19.247linux

linux/Kernel < 5.4.198linux

linux/Kernel < 5.10.121linux

linux/Kernel < 5.15.46linux

linux/Kernel < 5.17.14linux

linux/Kernel < 5.18.3linux

Timeline

Published Feb 26, 2025

Tracked Since Feb 18, 2026