CVE-2022-50038

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/meson: Fix refcount bugs in meson_vpu_has_available_connectors()

In this function, there are two refcount leak bugs: (1) when breaking out of for_each_endpoint_of_node(), we need call the of_node_put() for the 'ep'; (2) we should call of_node_put() for the reference returned by of_graph_get_remote_port() when it is not used anymore.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxbbbe775ec5b5dace43a35886da9924837da09ddd < 6a758f0ba11699837af9e1a0f7cbac6ef765a23eaffected
LinuxLinuxbbbe775ec5b5dace43a35886da9924837da09ddd < fc1fc2abfcb9235d0ece9a4d858426fb617cfa66affected
LinuxLinuxbbbe775ec5b5dace43a35886da9924837da09ddd < d58ef256781398ad115aef44de0a02ad27ea6c3aaffected
LinuxLinuxbbbe775ec5b5dace43a35886da9924837da09ddd < 3aa710e96747c8b4e52ba12ffe09edcb2755897caffected
LinuxLinuxbbbe775ec5b5dace43a35886da9924837da09ddd < fe71d84c1a6c0d54657431e8eeaefc9d24895304affected
LinuxLinuxbbbe775ec5b5dace43a35886da9924837da09ddd < 8dec38e19f6928235d4009ce55f7add8af34e5c7affected
LinuxLinuxbbbe775ec5b5dace43a35886da9924837da09ddd < 91b3c8dbe898df158fd2a84675f3a284ff6666f7affected
LinuxLinux4.10affected
LinuxLinux0 < 4.10unaffected
LinuxLinux4.14.291 <= 4.14.*unaffected
LinuxLinux4.19.256 <= 4.19.*unaffected
LinuxLinux5.4.211 <= 5.4.*unaffected
LinuxLinux5.10.138 <= 5.10.*unaffected
LinuxLinux5.15.63 <= 5.15.*unaffected
LinuxLinux5.19.4 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

References