Refcount Leak in Linux Kernel for ARM Devices by bcm Vendor
CVE-2022-50207

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 June 2025

What is CVE-2022-50207?

A refcount leak vulnerability was identified in the Linux kernel specifically impacting ARM devices. The flaw arose when the function of_find_matching_node() successfully returned a node pointer with an incremented reference count but lacked a corresponding call to of_node_put() to decrement it. This omission can lead to resource mismanagement and potential system instability as the reference count remains increased unnecessarily. Updating the kernel to include the missing of_node_put() is essential to prevent this leakage and ensure optimal memory usage.

Affected Version(s)

Linux b8eb35fd594aa5b635e329d5c8efab8aaceb8619 < 62d719d31ec667276d7375b64542b080cf187797

Linux b8eb35fd594aa5b635e329d5c8efab8aaceb8619 < 75866df2b1d673df5b7781e565ada753a7895f04

Linux b8eb35fd594aa5b635e329d5c8efab8aaceb8619 < 5afe042c889437de83f38a9d73d145742fb4f65f

References

https://git.kernel.org/stable/c/62d719d31ec667276d7375b64...
https://git.kernel.org/stable/c/75866df2b1d673df5b7781e56...
https://git.kernel.org/stable/c/5afe042c889437de83f38a9d7...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2022-50207 : Refcount Leak in Linux Kernel for ARM Devices by bcm Vendor