NVD

CVE-2022-49620 Detail

Description

In the Linux kernel, the following vulnerability has been resolved: net: tipc: fix possible refcount leak in tipc_sk_create() Free sk in case tipc_sk_insert() fails.

Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.

CVSS 4.0 Severity and Vector Strings:

NIST: NVD

N/A

NVD assessment not yet provided.

CVSS 3.x Severity and Vector Strings:

NIST: NVD

Base Score: 5.5 MEDIUM

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CVSS 2.0 Severity and Vector Strings:

National Institute of Standards and Technology

NIST: NVD

Base Score: N/A

NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Hyperlink	Resource
https://git.kernel.org/stable/c/00aff3590fc0a73bddd3b743863c14e76fd35c0c	Patch
https://git.kernel.org/stable/c/3b2957fc09fe1ac7f07f40dd50dd5f93e3f3a7a2	Patch
https://git.kernel.org/stable/c/4919d82f7041157a421ca9bf39a78551d5ad8a1b	Patch
https://git.kernel.org/stable/c/638fa20b618b2bbcf86da71231624cc82121a036	Patch
https://git.kernel.org/stable/c/7bc9e7f70bc57d8f02ffea2a42094281effb15ef	Patch
https://git.kernel.org/stable/c/833ecd0eae76eadf81d6d747bb5bc992d1151867	Patch
https://git.kernel.org/stable/c/ef488669b2652bde5b6ee5a409a5b048a2a50db4	Patch
https://git.kernel.org/stable/c/efa78f2ae363428525fb4981bb63c555ee79f3c7	Patch

Weakness Enumeration

CWE-ID	CWE Name	Source
NVD-CWE-Other	Other	NIST

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

2 change records found show changes

Initial Analysis by NIST 3/11/2025 6:18:35 PM

Action	Type	New Value
Added	CVSS V3.1	AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Added	CWE	NVD-CWE-Other
Added	CPE Configuration	Record truncated, showing 500 of 1010 characters. View Entire Change Record OR cpe:2.3:o:linux:linux_kernel:5.19:rc1::::::* cpe:2.3:o:linux:linux_kernel:5.19:rc2::::::* cpe:2.3:o:linux:linux_kernel:5.19:rc3::::::* cpe:2.3:o:linux:linux_kernel:5.19:rc4::::::* cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.16 from (excluding) 5.18.13 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.11 from (excluding) 5.15.56 *cpe:2.3:o:linux:li
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/00aff3590fc0a73bddd3b743863c14e76fd35c0c Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/3b2957fc09fe1ac7f07f40dd50dd5f93e3f3a7a2 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/4919d82f7041157a421ca9bf39a78551d5ad8a1b Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/638fa20b618b2bbcf86da71231624cc82121a036 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/7bc9e7f70bc57d8f02ffea2a42094281effb15ef Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/833ecd0eae76eadf81d6d747bb5bc992d1151867 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/ef488669b2652bde5b6ee5a409a5b048a2a50db4 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/efa78f2ae363428525fb4981bb63c555ee79f3c7 Types: Patch

New CVE Received from kernel.org 2/26/2025 2:01:37 AM

Action	Type	New Value
Added	Description	In the Linux kernel, the following vulnerability has been resolved: net: tipc: fix possible refcount leak in tipc_sk_create() Free sk in case tipc_sk_insert() fails.
Added	Reference	https://git.kernel.org/stable/c/00aff3590fc0a73bddd3b743863c14e76fd35c0c
Added	Reference	https://git.kernel.org/stable/c/3b2957fc09fe1ac7f07f40dd50dd5f93e3f3a7a2
Added	Reference	https://git.kernel.org/stable/c/4919d82f7041157a421ca9bf39a78551d5ad8a1b
Added	Reference	https://git.kernel.org/stable/c/638fa20b618b2bbcf86da71231624cc82121a036
Added	Reference	https://git.kernel.org/stable/c/7bc9e7f70bc57d8f02ffea2a42094281effb15ef
Added	Reference	https://git.kernel.org/stable/c/833ecd0eae76eadf81d6d747bb5bc992d1151867
Added	Reference	https://git.kernel.org/stable/c/ef488669b2652bde5b6ee5a409a5b048a2a50db4
Added	Reference	https://git.kernel.org/stable/c/efa78f2ae363428525fb4981bb63c555ee79f3c7

Quick Info

CVE Dictionary Entry:
CVE-2022-49620
NVD Published Date:
02/26/2025
NVD Last Modified:
03/11/2025
Source:
kernel.org

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

CVE-2022-49620 Detail

Description

Metrics

References to Advisories, Solutions, and Tools

Weakness Enumeration

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Change History

Initial Analysis by NIST 3/11/2025 6:18:35 PM

New CVE Received from kernel.org 2/26/2025 2:01:37 AM

Quick Info