| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <2025122451-CVE-2022-50750-5395@gregkh> Date: Wed, 24 Dec 2025 14:06:01 +0100 From: Greg Kroah-Hartman <gregkh@...uxfoundation.org> To: linux-cve-announce@...r.kernel.org Cc: Greg Kroah-Hartman <gregkh@...nel.org> Subject: CVE-2022-50750: drm/panel/panel-sitronix-st7701: Remove panel on DSI attach failure From: Greg Kroah-Hartman <gregkh@...nel.org> Description =========== In the Linux kernel, the following vulnerability has been resolved: drm/panel/panel-sitronix-st7701: Remove panel on DSI attach failure In case mipi_dsi_attach() fails, call drm_panel_remove() to avoid memory leak. The Linux kernel CVE team has assigned CVE-2022-50750 to this issue. Affected and fixed versions =========================== Issue introduced in 5.1 with commit 849b2e3ff9698226ab91e034d52cbb1da92a5b4c and fixed in 5.4.229 with commit 0b7c47b7f358f932159a9d5beec9616ef8a0c6b4 Issue introduced in 5.1 with commit 849b2e3ff9698226ab91e034d52cbb1da92a5b4c and fixed in 5.10.163 with commit 576828e59a0e03bbc763872912b04f3e3a1b3311 Issue introduced in 5.1 with commit 849b2e3ff9698226ab91e034d52cbb1da92a5b4c and fixed in 5.15.86 with commit 13fc167e1645c43c631d7752d98e377f0e4cbb15 Issue introduced in 5.1 with commit 849b2e3ff9698226ab91e034d52cbb1da92a5b4c and fixed in 6.0.16 with commit 23fddf78eac8d79c56f93ab69b6c47a0816967c9 Issue introduced in 5.1 with commit 849b2e3ff9698226ab91e034d52cbb1da92a5b4c and fixed in 6.1.2 with commit 465611e812587e72bf235034edce0e51be3d6809 Issue introduced in 5.1 with commit 849b2e3ff9698226ab91e034d52cbb1da92a5b4c and fixed in 6.2 with commit c62102165dd79284d42383d2f7ed17301bd8e629 Please see https://www.kernel.org for a full list of currently supported kernel versions by the kernel community. Unaffected versions might change over time as fixes are backported to older supported kernel versions. The official CVE entry at https://cve.org/CVERecord/?id=CVE-2022-50750 will be updated if fixes are backported, please check that for the most up to date information about this issue. Affected files ============== The file(s) affected by this issue are: drivers/gpu/drm/panel/panel-sitronix-st7701.c Mitigation ========== The Linux kernel CVE team recommends that you update to the latest stable kernel version for this, and many other bugfixes. Individual changes are never tested alone, but rather are part of a larger kernel release. Cherry-picking individual commits is not recommended or supported by the Linux kernel community at all. If however, updating to the latest release is impossible, the individual changes to resolve this issue can be found at these commits: https://git.kernel.org/stable/c/0b7c47b7f358f932159a9d5beec9616ef8a0c6b4 https://git.kernel.org/stable/c/576828e59a0e03bbc763872912b04f3e3a1b3311 https://git.kernel.org/stable/c/13fc167e1645c43c631d7752d98e377f0e4cbb15 https://git.kernel.org/stable/c/23fddf78eac8d79c56f93ab69b6c47a0816967c9 https://git.kernel.org/stable/c/465611e812587e72bf235034edce0e51be3d6809 https://git.kernel.org/stable/c/c62102165dd79284d42383d2f7ed17301bd8e629
Powered by blists - more mailing lists