Refcount Leak in Linux Kernel's ARM OMAP2+ Display Component
CVE-2022-50203

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 June 2025

What is CVE-2022-50203?

A refcount leak vulnerability has been identified in the display component of the ARM OMAP2+ within the Linux kernel. Specifically, in the function omapdss_init_fbdev(), a pointer to a node returned by of_find_node_by_name() has its reference count incremented but is not properly released when it is no longer in use. This oversight may lead to memory leaks, potentially impacting system stability over time. The appropriate use of the function of_node_put() is necessary to ensure proper reference count management and avoid such leaks.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 0b4f96b47ff8dc2fa35d03c4116927248796d9af

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 3e505298a75f0bbdc96e923e76e5d45d6c8f64a7

References

https://git.kernel.org/stable/c/bdbdf69d5b78c5712c60c0004...
https://git.kernel.org/stable/c/0b4f96b47ff8dc2fa35d03c41...
https://git.kernel.org/stable/c/3e505298a75f0bbdc96e923e7...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2022-50203 : Refcount Leak in Linux Kernel's ARM OMAP2+ Display Component