Description

In the Linux kernel, the following vulnerability has been resolved: drm/panfrost: Fix GEM handle creation ref-counting panfrost_gem_create_with_handle() previously returned a BO but with the only reference being from the handle, which user space could in theory guess and release, causing a use-after-free. Additionally if the call to panfrost_gem_mapping_get() in panfrost_ioctl_create_bo() failed then a(nother) reference on the BO was dropped. The _create_with_handle() is a problematic pattern, so ditch it and instead create the handle in panfrost_ioctl_create_bo(). If the call to panfrost_gem_mapping_get() fails then this means that user space has indeed gone behind our back and freed the handle. In which case just return an error code.

INFO

Published Date :

2025-09-18T16:04:00.512Z

Last Modified :

2026-01-14T19:13:09.937Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-50417 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-50417.

URL Resource
https://git.kernel.org/stable/c/0b70f6ea4d4f2b4d4b291d86ab76b4d07394932c cve-icon cve-icon
https://git.kernel.org/stable/c/3f9feffa8a5ab08b4e298a27b1aa7204a7d42ca2 cve-icon cve-icon
https://git.kernel.org/stable/c/4217c6ac817451d5116687f3cc6286220dc43d49 cve-icon cve-icon
https://git.kernel.org/stable/c/4f1105ee72d8c7c35d90e3491b31b2d9d6b7e33a cve-icon cve-icon
https://git.kernel.org/stable/c/ba3d2c2380e7129b525a787489c0b7e819a3b898 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025091855-CVE-2022-50417-1a69@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-50417 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-50417 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact