CVE-2022-50392
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-18

Last updated on: 2025-12-12

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8183: fix refcount leak in mt8183_mt6358_ts3a227_max98357_dev_probe() The node returned by of_parse_phandle() with refcount incremented, of_node_put() needs be called when finish using it. So add it in the error path in mt8183_mt6358_ts3a227_max98357_dev_probe().
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-18
Last Modified
2025-12-12
Generated
2026-06-16
AI Q&A
2025-09-18
EPSS Evaluated
2026-06-15
NVD
CVE-2022-50392
Affected Vendors & Products
Showing 3 associated CPEs
Vendor Product Version / Range
linux linux_kernel From 5.2 (inc) to 5.15.86 (exc)
linux linux_kernel From 5.16 (inc) to 6.0.16 (exc)
linux linux_kernel From 6.1 (inc) to 6.1.2 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-NVD-CWE-Other
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a reference count leak in the Linux kernel's ASoC mediatek mt8183 driver. Specifically, in the function mt8183_mt6358_ts3a227_max98357_dev_probe(), a node returned by of_parse_phandle() has its reference count incremented but is not properly decremented with of_node_put() in the error path, leading to a resource leak.

Impact Analysis

The reference count leak can lead to resource leaks in the kernel, potentially causing increased memory usage or instability in the affected system components. Over time, this could degrade system performance or cause unexpected behavior in the audio subsystem related to the mediatek mt8183 platform.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2022-50392. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart