Refcount Leak in Xilinx VIPP Media Driver for Linux Kernel
CVE-2022-50309

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
15 September 2025

What is CVE-2022-50309?

A refcount leak was identified in the Xilinx VIPP media driver within the Linux kernel. The issue arises when the function of_get_child_by_name() returns a node pointer without proper handling. Specifically, while the node pointer's reference count is incremented, the corresponding of_node_put() function is not called when the node is no longer needed. This oversight can lead to a memory leak, potentially affecting system stability over time. Proper implementation of reference count management is critical to maintain optimal performance and security in kernel-level drivers.

Affected Version(s)

Linux df3305156f989339529b3d6744b898d498fb1f7b < 7b0efe7534071e0153708886355d80db69525d50

Linux df3305156f989339529b3d6744b898d498fb1f7b < 6e7b3b1e4e9f739800cd8010b75a9bee8d808cee

Linux df3305156f989339529b3d6744b898d498fb1f7b < 3c38467c3255c428cdbd3cefaccca4662f302dc9

References

https://git.kernel.org/stable/c/7b0efe7534071e01537088863...
https://git.kernel.org/stable/c/6e7b3b1e4e9f739800cd8010b...
https://git.kernel.org/stable/c/3c38467c3255c428cdbd3cefa...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2022-50309 : Refcount Leak in Xilinx VIPP Media Driver for Linux Kernel