Refcount Leak Vulnerability in Linux Kernel OMAP2+ by Vendor
CVE-2022-50199

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 June 2025

What is CVE-2022-50199?

A refcount leak vulnerability exists in the omapdss_init_of function of the Linux kernel related to the OMAP2+ platform. When the omapdss_find_dss_of_node function calls of_find_compatible_node, it obtains a device node pointer whose reference count is incremented. Failure to properly release this reference by employing of_node_put() leads to a potential memory leak. The fix introduces the missing of_node_put() calls both in the normal execution flow and in error handling scenarios to ensure proper memory management and prevent resource leaks.

Affected Version(s)

Linux e0c827aca0730b51f38081aa4e8ecf0912aab55f < 935035cf97c8cd6794044b500fb0a44a6d30ffa1

Linux e0c827aca0730b51f38081aa4e8ecf0912aab55f < 14bac0c7035bf920e190a63c7e1b113c72eadbf4

Linux e0c827aca0730b51f38081aa4e8ecf0912aab55f < 230ad40a59c9a9ee8f3822b9a7bec09404102ebc

References

https://git.kernel.org/stable/c/935035cf97c8cd6794044b500...
https://git.kernel.org/stable/c/14bac0c7035bf920e190a63c7...
https://git.kernel.org/stable/c/230ad40a59c9a9ee8f3822b9a...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2022-50199 : Refcount Leak Vulnerability in Linux Kernel OMAP2+ by Vendor