CVE-2022-50199

In the Linux kernel, the following vulnerability has been resolved: ARM: OMAP2+: Fix refcount leak in omapdss_init_of omapdss_find_dss_of_node() calls of_find_compatible_node() to get device node. of_find_compatible_node() returns a node pointer with refcount incremented, we should use of_node_put() on it when done. Add missing of_node_put() in later error path and normal path.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/14bac0c7035bf920e190a63c7e1b113c72eadbf4	Patch
https://git.kernel.org/stable/c/230ad40a59c9a9ee8f3822b9a7bec09404102ebc	Patch
https://git.kernel.org/stable/c/507159facf002d113c4878fec67f37d62f187887	Patch
https://git.kernel.org/stable/c/935035cf97c8cd6794044b500fb0a44a6d30ffa1	Patch
https://git.kernel.org/stable/c/9705db1eff38d6b9114121f9e253746199b759c9	Patch
https://git.kernel.org/stable/c/a32dc6829e33c54e751346aa3e08ddb6d0e1a6a0	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:4.20:-::::::
	cpe:2.3:o:linux:linux_kernel:4.20:rc3::::::
	cpe:2.3:o:linux:linux_kernel:4.20:rc4::::::
	cpe:2.3:o:linux:linux_kernel:4.20:rc5::::::
	cpe:2.3:o:linux:linux_kernel:4.20:rc6::::::
	cpe:2.3:o:linux:linux_kernel:4.20:rc7::::::

History

No history.

Information

Published : 2025-06-18 11:15

Updated : 2025-11-19 12:47

NVD link : CVE-2022-50199

Mitre link : CVE-2022-50199

CVE.ORG link : CVE-2022-50199

JSON object : View

Products Affected

linux

linux_kernel

CWE

NVD-CWE-Other

{"id": "CVE-2022-50199", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.8}]}, "published": "2025-06-18T11:15:50.583", "references": [{"url": "https://git.kernel.org/stable/c/14bac0c7035bf920e190a63c7e1b113c72eadbf4", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/230ad40a59c9a9ee8f3822b9a7bec09404102ebc", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/507159facf002d113c4878fec67f37d62f187887", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/935035cf97c8cd6794044b500fb0a44a6d30ffa1", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/9705db1eff38d6b9114121f9e253746199b759c9", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/a32dc6829e33c54e751346aa3e08ddb6d0e1a6a0", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nARM: OMAP2+: Fix refcount leak in omapdss_init_of\n\nomapdss_find_dss_of_node() calls of_find_compatible_node() to get device\nnode. of_find_compatible_node() returns a node pointer with refcount\nincremented, we should use of_node_put() on it when done.\nAdd missing of_node_put() in later error path and normal path."}, {"lang": "es", "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: ARM: OMAP2+: Se corrige la fuga de recuento de referencias en omapdss_init_of. Omapdss_find_dss_of_node() llama a of_find_compatible_node() para obtener el nodo del dispositivo. of_find_compatible_node() devuelve un puntero de nodo con el recuento de referencias incrementado; al finalizar, se debe usar of_node_put(). Se a\u00f1ade la falta de of_node_put() en la ruta de error posterior y en la ruta normal."}], "lastModified": "2025-11-19T12:47:31.280", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA0BC6FB-4FFA-409D-BC6E-455C4CED2894", "versionEndExcluding": "5.4.211", "versionStartIncluding": "4.20.1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C2BF720F-C5EE-4DE2-9BDF-CE4CFBC767F4", "versionEndExcluding": "5.10.137", "versionStartIncluding": "5.5"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "51861563-7F40-460F-82CD-2D3FBDAD6618", "versionEndExcluding": "5.15.61", "versionStartIncluding": "5.11"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5B42E453-8837-49D0-A5EF-03F818A6DC11", "versionEndExcluding": "5.18.18", "versionStartIncluding": "5.16"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A1A2A5A5-4598-4D7E-BA07-4660398D6C8F", "versionEndExcluding": "5.19.2", "versionStartIncluding": "5.19"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.20:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1072305B-94A8-4D68-9419-B786885AA310"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.20:rc3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "78302933-7144-4E9A-A4DC-B8EB431CC249"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.20:rc4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0758DE8E-2550-4676-A7D0-9D19FD935993"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.20:rc5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB4884D1-AA0E-4A94-93A3-BF058D3DFEF7"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.20:rc6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1741C485-D309-4821-A7F9-6F31A8FEB5CF"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.20:rc7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "82240F8A-B5DF-45CC-8031-CDE3E191D24C"}], "operator": "OR"}]}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}