CVE-2022-50823 — Improper Update of Reference Count in Linux

CWE-911 — Improper Update of Reference Count7 documents6 sources

Severity

3.3LOW

No vector

EPSS

0.0%

top 84.94%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 30

Description

In the Linux kernel, the following vulnerability has been resolved: clk: tegra: Fix refcount leak in tegra114_clock_init of_find_matching_node() returns a node pointer with refcount incremented, we should use of_node_put() on it when not need anymore. Add missing of_node_put() to avoid refcount leak.

Affected Packages4 packages

▶Linuxlinux/linux_kernel3.10.0 — 4.9.331+7

▶Debianlinux/linux_kernel< 5.10.158-1+3

▶CVEListV5linux/linux2cb5efefd6f7d3e7df9a7430b910a80515821256 — 1f0e1cbbaffd729560716e9592aa5e609ea93bb6+9

▶debiandebian/linux< linux 6.0.3-1 (bookworm)

🔴Vulnerability Details

OSV

clk: tegra: Fix refcount leak in tegra114_clock_init↗2025-12-30

▶

OSV

CVE-2022-50823: In the Linux kernel, the following vulnerability has been resolved: clk: tegra: Fix refcount leak in tegra114_clock_init of_find_matching_node() retur↗2025-12-30

▶

GHSA

GHSA-34vm-p5v7-6w29: In the Linux kernel, the following vulnerability has been resolved: clk: tegra: Fix refcount leak in tegra114_clock_init of_find_matching_node() ret↗2025-12-30

▶

📋Vendor Advisories

Red Hat

kernel: clk: tegra: Fix refcount leak in tegra114_clock_init↗2025-12-30

▶

Debian

CVE-2022-50823: linux - In the Linux kernel, the following vulnerability has been resolved: clk: tegra:...↗2022

▶

🕵️Threat Intelligence

Wiz

CVE-2022-50823 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶