CVE-2022-50039

stmmac: intel: Add a missing clk_disable_unprepare() call in intel_eth_pci_remove()

Description

In the Linux kernel, the following vulnerability has been resolved: stmmac: intel: Add a missing clk_disable_unprepare() call in intel_eth_pci_remove() Commit 09f012e64e4b ("stmmac: intel: Fix clock handling on error and remove paths") removed this clk_disable_unprepare() This was partly revert by commit ac322f86b56c ("net: stmmac: Fix clock handling on remove path") which removed this clk_disable_unprepare() because: " While unloading the dwmac-intel driver, clk_disable_unprepare() is being called twice in stmmac_dvr_remove() and intel_eth_pci_remove(). This causes kernel panic on the second call. " However later on, commit 5ec55823438e8 ("net: stmmac: add clocks management for gmac driver") has updated stmmac_dvr_remove() which do not call clk_disable_unprepare() anymore. So this call should now be called from intel_eth_pci_remove().

N/A
CVSS
Severity:
EPSS 0.02%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/02f3642d8e657c05f382729c165bed46745dc18c
https://git.kernel.org/stable/c/47129531196054b374017555165b47a43cdb6f41
https://git.kernel.org/stable/c/9400aeb419d35e718e90aa14a97c11229d0a40bc
https://git.kernel.org/stable/c/5c23d6b717e4e956376f3852b90f58e262946b50

Frequently Asked Questions

What is the severity of CVE-2022-50039?
CVE-2022-50039 has not yet been assigned a CVSS score.
How to fix CVE-2022-50039?
To fix CVE-2022-50039, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-50039 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2022-50039 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-50039?
CVE-2022-50039 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.