CVE-2022-50489

EUVD-2025-32376
In the Linux kernel, the following vulnerability has been resolved:

drm/mipi-dsi: Detach devices when removing the host

Whenever the MIPI-DSI host is unregistered, the code of
mipi_dsi_host_unregister() loops over every device currently found on that
bus and will unregister it.

However, it doesn't detach it from the bus first, which leads to all kind
of resource leaks if the host wants to perform some clean up whenever a
device is detached.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
3.14 ≤
𝑥
< 4.9.331
linuxlinux_kernel
4.10 ≤
𝑥
< 4.14.296
linuxlinux_kernel
4.15 ≤
𝑥
< 4.19.262
linuxlinux_kernel
4.20 ≤
𝑥
< 5.4.220
linuxlinux_kernel
5.5 ≤
𝑥
< 5.10.150
linuxlinux_kernel
5.11 ≤
𝑥
< 5.15.75
linuxlinux_kernel
5.16 ≤
𝑥
< 5.19.17
linuxlinux_kernel
6.0 ≤
𝑥
< 6.0.3
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.148-1
fixed
bookworm (security)
6.1.153-1
fixed
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.237-1
fixed
forky
6.16.9-1
fixed
sid
6.16.9-1
fixed
trixie
6.12.43-1
fixed
trixie (security)
6.12.48-1
fixed
References
https://git.kernel.org/stable/c/262364574b05676d4b9ebde2ddd3588cd2efd8ce
https://git.kernel.org/stable/c/26c1b4cfe56f040f71a51c92da1f4cac2e3b9455
https://git.kernel.org/stable/c/353ab1c13fdd6e524edde780235a8ce9b892c81c
https://git.kernel.org/stable/c/45120fa5e522d444e3fc1c5a9afc5d53eed91d00
https://git.kernel.org/stable/c/668a8f17b5290d04ef7343636a5588a0692731a1
https://git.kernel.org/stable/c/6fc2cd40db1969ba372ce9536dcfcdb87271eac4
https://git.kernel.org/stable/c/8242167cfc83dd7e4c96f44b45f108db9bb88146
https://git.kernel.org/stable/c/95ae458209f5a556bba98aff872f933694914eb7
https://git.kernel.org/stable/c/c202cda08cd5693645d4990ad1eb2e8068a884ec