CVE-2022-50176

low-risk

Published 2025-06-18

In the Linux kernel, the following vulnerability has been resolved: drm/mcde: Fix refcount leak in mcde_dsi_bind Every iteration of for_each_available_child_of_node() decrements the reference counter of the previous node. There is no decrement when break out from the loop and results in refcount leak. Add missing of_node_put() to fix this.

Do I need to act?

0.03% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (1)

Linux Kernel

Affected Vendors

Linux

References (6)

Patch https://git.kernel.org/stable/c/3123ae6fdd4013d24a3a4877084b14e917faae5c

Patch https://git.kernel.org/stable/c/32c827e30bb44ae809950a9efab59e98e44d30e5

Patch https://git.kernel.org/stable/c/3a149169e4a2f9127022fec6ef5d71b4e804b3b9

Patch https://git.kernel.org/stable/c/7214902de5b1fb2b632a7b8b3b9540e41aabab38

Patch https://git.kernel.org/stable/c/87c35bbefdfa3c5edfb8c80f5c04717aaacc629d

Patch https://git.kernel.org/stable/c/f57699a9b66ea11f000f56d1f1179059239b8690

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal