CVE-2022-50360Resource Leak in Linux

5 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 94.52%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedSep 17

Description

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: fix aux-bus EP lifetime Device-managed resources allocated post component bind must be tied to the lifetime of the aggregate DRM device or they will not necessarily be released when binding of the aggregate device is deferred. This can lead resource leaks or failure to bind the aggregate device when binding is later retried and a second attempt to allocate the resources is made. For the DP aux-bus, an attempt to

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

NVDlinux/linux_kernel5.196.0.7+1
Debianlinux/linux_kernel< 6.0.7-1+2
CVEListV5linux/linuxc3bf8e21b38a89418f2e22173b229aaad23068158768663188e4169333f66583e4d2432e65c421df+2
debiandebian/linux< linux 6.0.7-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
GHSA
GHSA-v2c6-2mh9-m823: In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: fix aux-bus EP lifetime Device-managed resources allocated post comp2025-09-17
OSV
CVE-2022-50360: In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: fix aux-bus EP lifetime Device-managed resources allocated post compon2025-09-17

📋Vendor Advisories

2
Red Hat
kernel: drm/msm/dp: fix aux-bus EP lifetime2025-09-17
Debian
CVE-2022-50360: linux - In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp:...2022
CVE-2022-50360 — Resource Leak in Linux | cvebase