Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: ARM: OMAP2+: Fix refcount leak in omapdss_init_of omapdss_find_dss_of_node() calls of_find_compatible_node() to get device node. of_find_compatible_node() returns a node pointer with refcount incremented, we should use of_node_put() on it when done. Add missing of_node_put() in later error path and normal path.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 4.20.1, < 5.4.211 |
References
- https://git.kernel.org/stable/c/14bac0c7035bf920e190a63c7e1b113c72eadbf4Patch
- https://git.kernel.org/stable/c/230ad40a59c9a9ee8f3822b9a7bec09404102ebcPatch
- https://git.kernel.org/stable/c/507159facf002d113c4878fec67f37d62f187887Patch
- https://git.kernel.org/stable/c/935035cf97c8cd6794044b500fb0a44a6d30ffa1Patch
- https://git.kernel.org/stable/c/9705db1eff38d6b9114121f9e253746199b759c9Patch
- https://git.kernel.org/stable/c/a32dc6829e33c54e751346aa3e08ddb6d0e1a6a0Patch
FAQ
What is CVE-2022-50199?
CVE-2022-50199 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: ARM: OMAP2+: Fix refcount leak in omapdss_init_of omapdss_find_dss_of_node() calls of_find_compatible_node() to get device node. o...
How severe is CVE-2022-50199?
CVE-2022-50199 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-50199?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.