CVE-2022-50645

high

Description

In the Linux kernel, the following vulnerability has been resolved: EDAC/i10nm: fix refcount leak in pci_get_dev_wrapper() As the comment of pci_get_domain_bus_and_slot() says, it returns a PCI device with refcount incremented, so it doesn't need to call an extra pci_dev_get() in pci_get_dev_wrapper(), and the PCI device needs to be put in the error path.

References

https://git.kernel.org/stable/c/f29c2f57cdf7a57223dcd9fbaa2261faab5234b2

https://git.kernel.org/stable/c/e6e295a434d1c917a017980389aec88bf35cc81b

https://git.kernel.org/stable/c/9c8921555907f4d723f01ed2d859b66f2d14f08e

https://git.kernel.org/stable/c/3e255dc21031cc1f341584eb99a7f31598bf0be7

https://git.kernel.org/stable/c/2db53c7059167b63cc790366ef1a9e286e71980b

https://git.kernel.org/stable/c/1adb2583cdbd75f379e3230a43a7412d373d499f

Details

Source: Mitre, NVD

Published: 2025-12-09

Updated: 2025-12-09

Risk Information

CVSS v2

Base Score: 5.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Severity: High

EPSS

EPSS: 0.00024