Refcount Leak in Linux Kernel CXL Component
CVE-2022-50311

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
15 September 2025

What is CVE-2022-50311?

A refcount leak has been found in the CXL component of the Linux kernel. The issue arises during the execution of the of_get_next_parent() function, which increments the reference count of a node pointer but fails to properly release it with of_node_put() in certain error conditions. This oversight can lead to memory management issues and might result in resource exhaustion. Proper remediation involves adding the missing of_node_put() calls to avert the refcount leak, enhancing the overall stability and security of the kernel's operation.

Affected Version(s)

Linux f24be42aab37c6d07c05126673138e06223a6399

Linux f24be42aab37c6d07c05126673138e06223a6399

Linux f24be42aab37c6d07c05126673138e06223a6399

References

https://git.kernel.org/stable/c/c9bebc503881c1391f6c4f820...
https://git.kernel.org/stable/c/ee870f72465015327ad96204b...
https://git.kernel.org/stable/c/f2d60f6ba173cded65081cee6...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2022-50311 : Refcount Leak in Linux Kernel CXL Component