Memory Corruption Vulnerability in Linux Kernel's DRM MSM DSI Component
CVE-2022-50368

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 17 September 2025

What is CVE-2022-50368?

A memory corruption vulnerability exists in the DRM MSM DSI component of the Linux kernel. This issue arises when more than eight bridges are added, leading to the possibility of corrupting data beyond the fixed-size bridge array. Without proper sanity checks on the bridge counter, the system may behave unpredictably, potentially allowing unauthorized access or disruption of services. The vulnerability has been addressed in recent patches to enhance system integrity.

Affected Version(s)

Linux a689554ba6ed81cf606c16539f6ffc2a1dcdaf8e < 4e5587cddb334f7a5bb1c49ea8bbfc966fafe1b8

Linux a689554ba6ed81cf606c16539f6ffc2a1dcdaf8e

Linux a689554ba6ed81cf606c16539f6ffc2a1dcdaf8e < 21c4679af01f1027cb559330c2e7d410089b2b36

References

https://git.kernel.org/stable/c/4e5587cddb334f7a5bb1c49ea...

https://git.kernel.org/stable/c/f649ed0e1b7a1545f8e27267d...

https://git.kernel.org/stable/c/21c4679af01f1027cb559330c...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 17, 2025
Vulnerability Reserved
Sep 17, 2025