CVE-2023-52571: power: supply: rk817: Fix node refcount leak

Description

In the Linux kernel, the following vulnerability has been resolved:

power: supply: rk817: Fix node refcount leak

Dan Carpenter reports that the Smatch static checker warning has found
that there is another refcount leak in the probe function. While
of_node_put() was added in one of the return paths, it should in
fact be added for ALL return paths that return an error and at driver
removal time.

Classification

CVE ID: CVE-2023-52571

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.05% (probability of being exploited)

EPSS Percentile: 17.83% (scored less or equal to compared to others)

EPSS Date: 2025-02-04 (when was this score calculated)

References

https://git.kernel.org/stable/c/fe6406238d5a24e9fb0286c71edd67b99d8db58d
https://git.kernel.org/stable/c/70326b46b6a043f7e7404b2ff678b033c06d6577
https://git.kernel.org/stable/c/488ef44c068e79752dba8eda0b75f524f111a695

Timeline

2024-12-20 00:30:57 UTC
CVE

power: supply: rk817: Fix node refcount leak