CVE-2022-50703

high

Description

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: smsm: Fix refcount leak bugs in qcom_smsm_probe() There are two refcount leak bugs in qcom_smsm_probe(): (1) The 'local_node' is escaped out from for_each_child_of_node() as the break of iteration, we should call of_node_put() for it in error path or when it is not used anymore. (2) The 'node' is escaped out from for_each_available_child_of_node() as the 'goto', we should call of_node_put() for it in goto target.

References

https://git.kernel.org/stable/c/ee7fc83ce0e6986ff9b1c1d7e994fbbf8d43861d

https://git.kernel.org/stable/c/bd4666bf5562fe8e8e5e9bd6fc805d30e1767f43

https://git.kernel.org/stable/c/af8f6f39b8afd772fda4f8e61823ef8c021bf382

https://git.kernel.org/stable/c/96e0028debdd07a6d582f0dfadf9a3ec2b5fffff

https://git.kernel.org/stable/c/8fb6112bd49c0e49f2cf51604231d85ff00284bb

https://git.kernel.org/stable/c/42df28994eba7b56c762f7bbe7efd5611a1cd15b

https://git.kernel.org/stable/c/39781c98ad46b4e85053345dff797240c1ed7935

https://git.kernel.org/stable/c/1e3ed59370c712df436791efed120f0c082aa9bc

https://git.kernel.org/stable/c/1bbe75d466e5118b7d49ef4a346c3ce5742da4e8

Details

Source: Mitre, NVD

Published: 2025-12-24

Updated: 2025-12-29

Risk Information

CVSS v2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Severity: High

EPSS

EPSS: 0.00033