CVE-2022-49002
Published: Oct 21, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix PCI device refcount leak in dmar_dev_scope_init() for_each_pci_dev() is implemented by pci_get_device(). The comment of pci_get_device() says that it will increase the reference count for the returned pci_dev and also decrease the reference count for the input pci_dev @from if it is not NULL. If we break for_each_pci_dev() loop with pdev not NULL, we need to call pci_dev_put() to decrease the reference count. Add the missing pci_dev_put() for the error path to avoid reference count leak.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 2e45528930388658603ea24d49cf52867b928d3e - < d47bc9d7bcdbb9adc9703513d964b514fee5b0bfaffected 2e45528930388658603ea24d49cf52867b928d3e - < 71c4a621985fc051ab86d3a86c749069a993fcb2affected 2e45528930388658603ea24d49cf52867b928d3e - < 876d7bfb89273997056220029ff12b1c2cc4691daffected 2e45528930388658603ea24d49cf52867b928d3e - < cbdd83bd2fd67142b03ce9dbdd1eab322ff7321faffected 2e45528930388658603ea24d49cf52867b928d3e - < a5c65cd56aed027f8a97fda8b691caaeb66d115e+3 more versions |
Linux | Linux | affected 3.15unaffected 0 - < 3.15unaffected 4.9.335 - <= 4.9.*unaffected 4.14.301 - <= 4.14.*unaffected 4.19.268 - <= 4.19.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now