CVE-2022-50122 - Vulnerability Details

- ASoC: mediatek: mt8173-rt5650: Fix refcount leak in mt8173_rt5650_dev_probe

Description

In the Linux kernel, the following vulnerability has been resolved:

ASoC: mediatek: mt8173-rt5650: Fix refcount leak in mt8173_rt5650_dev_probe

of_parse_phandle() returns a node pointer with refcount
incremented, we should use of_node_put() on it when not need anymore.
Fix refcount leak in some error paths.

Published: 2025-06-18

Score: 5.5 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

No analysis available yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`0f83f9296d5c91d08cf46cf1ba8a17fb870dedf0`	affected	< 06ace427953f5036b64aed658f0055f65d76fd27
`0f83f9296d5c91d08cf46cf1ba8a17fb870dedf0`	affected	< e024a24fb264523149658c10c76bb363b3d0004d
`0f83f9296d5c91d08cf46cf1ba8a17fb870dedf0`	affected	< 79f566907d27abbd7600cebe51def5081d5796b5
`0f83f9296d5c91d08cf46cf1ba8a17fb870dedf0`	affected	< 403d46971936f9f704b91cecffe66e44aa39e915
`0f83f9296d5c91d08cf46cf1ba8a17fb870dedf0`	affected	< 994f2edeeb2114bb22b62741cb8fb030fc7e5441
`0f83f9296d5c91d08cf46cf1ba8a17fb870dedf0`	affected	< e38e4952ac7a316c9002af30980d6aa850214474
`0f83f9296d5c91d08cf46cf1ba8a17fb870dedf0`	affected	< 5ec83aa7a9e5bcca80ccd49978916feb4e0ffc07
`0f83f9296d5c91d08cf46cf1ba8a17fb870dedf0`	affected	< efe2178d1a32492f99e7f1f2568eea5c88a85729

Linux

affected

Version	Status	Constraints
`4.6`	affected	—
`0`	unaffected	< 4.6
`4.14.291`	unaffected	≤ 4.14.*
`4.19.256`	unaffected	≤ 4.19.*
`5.4.211`	unaffected	≤ 5.4.*
`5.10.137`	unaffected	≤ 5.10.*
`5.15.61`	unaffected	≤ 5.15.*
`5.18.18`	unaffected	≤ 5.18.*
`5.19.2`	unaffected	≤ 5.19.*
`6.0`	unaffected	≤ *

Configuration 1 [-]

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::

No data.

No data available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2022-55388	In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8173-rt5650: Fix refcount leak in mt8173_rt5650_dev_probe of_parse_phandle() returns a node pointer with refcount incremented, we should use of_node_put() on it when not need anymore. Fix refcount leak in some error paths.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00198.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/06ace427953f5036b64aed658f0055f65d76fd27
https://git.kernel.org/stable/c/403d46971936f9f704b91cecffe66e44aa39e915
https://git.kernel.org/stable/c/5ec83aa7a9e5bcca80ccd49978916feb4e0ffc07
https://git.kernel.org/stable/c/79f566907d27abbd7600cebe51def5081d5796b5
https://git.kernel.org/stable/c/994f2edeeb2114bb22b62741cb8fb030fc7e5441
https://git.kernel.org/stable/c/e024a24fb264523149658c10c76bb363b3d0004d
https://git.kernel.org/stable/c/e38e4952ac7a316c9002af30980d6aa850214474
https://git.kernel.org/stable/c/efe2178d1a32492f99e7f1f2568eea5c88a85729
https://lore.kernel.org/linux-cve-announce/2025061811-CVE-2022-50122-c494@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2022-50122
https://www.cve.org/CVERecord?id=CVE-2022-50122

History

Tue, 18 Nov 2025 18:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Linux Linux linux Kernel
Weaknesses		NVD-CWE-Other
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel

Thu, 19 Jun 2025 03:00:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025061811-CVE-2022-50122-c494@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2022-50122 https://www.cve.org/CVERecord?id=CVE-2022-50122
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Low`

Wed, 18 Jun 2025 11:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8173-rt5650: Fix refcount leak in mt8173_rt5650_dev_probe of_parse_phandle() returns a node pointer with refcount incremented, we should use of_node_put() on it when not need anymore. Fix refcount leak in some error paths.
Title		ASoC: mediatek: mt8173-rt5650: Fix refcount leak in mt8173_rt5650_dev_probe
References		https://git.kernel.org/stable/c/06ace427953f5036b64aed658f0055f65d76fd27 https://git.kernel.org/stable/c/403d46971936f9f704b91cecffe66e44aa39e915 https://git.kernel.org/stable/c/5ec83aa7a9e5bcca80ccd49978916feb4e0ffc07 https://git.kernel.org/stable/c/79f566907d27abbd7600cebe51def5081d5796b5 https://git.kernel.org/stable/c/994f2edeeb2114bb22b62741cb8fb030fc7e5441 https://git.kernel.org/stable/c/e024a24fb264523149658c10c76bb363b3d0004d https://git.kernel.org/stable/c/e38e4952ac7a316c9002af30980d6aa850214474 https://git.kernel.org/stable/c/efe2178d1a32492f99e7f1f2568eea5c88a85729

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-06-18T11:02:51.099Z

Updated: 2026-05-11T19:13:16.264Z

Reserved: 2025-06-18T10:57:27.417Z

Link: CVE-2022-50122

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2025-06-18T11:15:41.900

Modified: 2026-06-17T05:22:48.310

Link: CVE-2022-50122

Redhat

Severity : Low

Publid Date: 2025-06-18T00:00:00Z

Links: CVE-2022-50122 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

NVD-CWE-Other

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object