Vulnerability in Linux Kernel Affecting Panfrost Graphics Driver
CVE-2022-50417

7.8HIGH

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 September 2025

What is CVE-2022-50417?

A vulnerability in the Linux kernel related to the Panfrost graphics driver involves a use-after-free condition due to improper reference counting during the creation of GEM handles. The function panfrost_gem_create_with_handle() would return a buffer object (BO) with its only reference relying on the handle, which could be manipulated by user space. This flaw could lead to a scenario where user space releases the BO reference, resulting in a potential security risk. To mitigate this issue, the handle creation pattern was revised to ensure more robust reference management, enhancing overall security in user-space allocations.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux f3ba91228e8e917e5bd6c4b72bfe846933d17370 < 0b70f6ea4d4f2b4d4b291d86ab76b4d07394932c

Linux f3ba91228e8e917e5bd6c4b72bfe846933d17370 < 4f1105ee72d8c7c35d90e3491b31b2d9d6b7e33a

Linux f3ba91228e8e917e5bd6c4b72bfe846933d17370 < 3f9feffa8a5ab08b4e298a27b1aa7204a7d42ca2

References

https://git.kernel.org/stable/c/0b70f6ea4d4f2b4d4b291d86a...
https://git.kernel.org/stable/c/4f1105ee72d8c7c35d90e3491...
https://git.kernel.org/stable/c/3f9feffa8a5ab08b4e298a27b...

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.