CVE-2022-50480

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak exists in the pl353 smc probe() function due to a missing call to of node put() within the for each available child of node() loop when the 'child' reference is not used. This occurs in the failure path where there is no break, leading to a reference count leak. The of platform device create() function creates a new reference, but this does not address the initial leak.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-911CWE-664

Related Identifiers

BDU:2026-03843

CVE-2022-50480

SUSE-SU-2025:4111-1

SUSE-SU-2025:4135-1

SUSE-SU-2025:4139-1

SUSE-SU-2025:4149-1

SUSE-SU-2025:4188-1

SUSE-SU-2025:4320-1

Affected Products

Linux Kernel

Suse

CVE-2022-50480

Weakness Enumeration

Related Identifiers

Affected Products

References · 475