PT-2025-37611 · Linux+3 · Linux Kernel+3

Published

2025-09-15

Updated

2025-10-23

CVE-2022-50309

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A reference count leak was resolved in the xvip graph dma init function within the Xilinx ViPP driver of the Linux kernel. The of get child by name() function increments the reference count of the returned node pointer, and a missing call to of node put() resulted in a reference count leak when the node was no longer needed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2022-50309

SUSE-SU-2025:03613-1

SUSE-SU-2025:03615-1

SUSE-SU-2025:03626-1

SUSE-SU-2025:03628-1

SUSE-SU-2025:3716-1

SUSE-SU-2025:3761-1

Affected Products

Astra Linux

Linux Kernel

Suse

Xilinx Vipp Driver

PT-2025-37611 · Linux+3 · Linux Kernel+3

CVE-2022-50309

Related Identifiers

Affected Products

References · 881