CVE-2022-50492

HIGH

Linux Kernel 3.12-6.0.7 - Use-After-Free in DRM Bridge Counter

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/msm: fix use-after-free on probe deferral The bridge counter was never reset when tearing down the DRM device so that stale pointers to deallocated structures would be accessed on the next tear down (e.g. after a second late bind deferral). Given enough bridges and a few probe deferrals this could currently also lead to data beyond the bridge array being corrupted. Patchwork: https://patchwork.freedesktop.org/patch/502665/

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/0a30a47741b6df1f9555a0fac6aebb7e8c363bad

Patch

https://git.kernel.org/stable/c/6808abdb33bf90330e70a687d29f038507e06ebb

Scores

CVSS v3 7.8

EPSS 0.0014

EPSS Percentile 3.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-416

Status published

Products (9)

linux/Kernel 3.12.0 - 6.0.7linux

Linux/Linux < 3.12

Linux/Linux 3.12

Linux/Linux 6.0.7 - 6.0.*

Linux/Linux 6.1

Linux/Linux a3376e3ec81c5dd0622cbc187db76d2824d31c1c - 0a30a47741b6df1f9555a0fac6aebb7e8c363bad

Linux/Linux a3376e3ec81c5dd0622cbc187db76d2824d31c1c - 6808abdb33bf90330e70a687d29f038507e06ebb

linux/linux_kernel 6.1 rc1 (2 CPE variants)

linux/linux_kernel 3.12 - 6.0.7

Published Oct 04, 2025

Tracked Since Feb 18, 2026