CVE-2022-50109

video: fbdev: amba-clcd: Fix refcount leak bugs

Description

In the Linux kernel, the following vulnerability has been resolved: video: fbdev: amba-clcd: Fix refcount leak bugs In clcdfb_of_init_display(), we should call of_node_put() for the references returned by of_graph_get_next_endpoint() and of_graph_get_remote_port_parent() which have increased the refcount. Besides, we should call of_node_put() both in fail path or when the references are not used anymore.

N/A
CVSS
Severity:
EPSS 0.02%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/2688df86c02da6bdc9866b62d974e169a2678883
https://git.kernel.org/stable/c/a97ff8a949dbf41be89f436b2b1a2b3d794493df
https://git.kernel.org/stable/c/49a4c1a87ef884e43cdda58b142a2a30f2f09efc
https://git.kernel.org/stable/c/da276dc288bf838ea0fd778b5441ec0f601c69f7
https://git.kernel.org/stable/c/29f06f1905c312671a09ee85ca92ac04a1d9f305
https://git.kernel.org/stable/c/a51519ebd0fdad3546463018b8f6bc3b0f4d3032
https://git.kernel.org/stable/c/a88ab277cca99aeb9a3b2b7db358f1a6dd528b0c
https://git.kernel.org/stable/c/26c2b7d9fac42eb8317f3ceefa4c1a9a9170ca69

Frequently Asked Questions

What is the severity of CVE-2022-50109?
CVE-2022-50109 has not yet been assigned a CVSS score.
How to fix CVE-2022-50109?
To fix CVE-2022-50109, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-50109 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2022-50109 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-50109?
CVE-2022-50109 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.