CVE-2022-50109

Summary

In the Linux kernel, the following vulnerability has been resolved:

video: fbdev: amba-clcd: Fix refcount leak bugs

In clcdfb_of_init_display(), we should call of_node_put() for the references returned by of_graph_get_next_endpoint() and of_graph_get_remote_port_parent() which have increased the refcount.

Besides, we should call of_node_put() both in fail path or when the references are not used anymore.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd10715be03bd8bad59ddc50236cb140c3bd73c7b < 2688df86c02da6bdc9866b62d974e169a2678883affected
LinuxLinuxd10715be03bd8bad59ddc50236cb140c3bd73c7b < a97ff8a949dbf41be89f436b2b1a2b3d794493dfaffected
LinuxLinuxd10715be03bd8bad59ddc50236cb140c3bd73c7b < 49a4c1a87ef884e43cdda58b142a2a30f2f09efcaffected
LinuxLinuxd10715be03bd8bad59ddc50236cb140c3bd73c7b < da276dc288bf838ea0fd778b5441ec0f601c69f7affected
LinuxLinuxd10715be03bd8bad59ddc50236cb140c3bd73c7b < 29f06f1905c312671a09ee85ca92ac04a1d9f305affected
LinuxLinuxd10715be03bd8bad59ddc50236cb140c3bd73c7b < a51519ebd0fdad3546463018b8f6bc3b0f4d3032affected
LinuxLinuxd10715be03bd8bad59ddc50236cb140c3bd73c7b < a88ab277cca99aeb9a3b2b7db358f1a6dd528b0caffected
LinuxLinuxd10715be03bd8bad59ddc50236cb140c3bd73c7b < 26c2b7d9fac42eb8317f3ceefa4c1a9a9170ca69affected
LinuxLinux3.17affected
LinuxLinux0 < 3.17unaffected
LinuxLinux4.14.291 <= 4.14.*unaffected
LinuxLinux4.19.256 <= 4.19.*unaffected
LinuxLinux5.4.211 <= 5.4.*unaffected
LinuxLinux5.10.137 <= 5.10.*unaffected
LinuxLinux5.15.61 <= 5.15.*unaffected
LinuxLinux5.18.18 <= 5.18.*unaffected
LinuxLinux5.19.2 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

References