CVE-2022-50703
Published Dec 24, 2025
Modified Apr 15, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: soc: qcom: smsm: Fix refcount leak bugs in qcom_smsm_probe() There are two refcount leak bugs in qcom_smsm_probe(): (1) The 'local_node' is escaped out from for_each_child_of_node() as the break of iteration, we should call of_node_put() for it in error path or when it is not used anymore. (2) The 'node' is escaped out from for_each_available_child_of_node() as the 'goto', we should call of_node_put() for it in goto target.
Is your site exposed to CVE-2022-50703?
Run a free security scan — no signup, results in seconds.
References
Other References
https://git.kernel.org/stable/c/1bbe75d466e5118b7d49ef4a346c3ce5742da4e8
https://git.kernel.org/stable/c/1e3ed59370c712df436791efed120f0c082aa9bc
https://git.kernel.org/stable/c/39781c98ad46b4e85053345dff797240c1ed7935
https://git.kernel.org/stable/c/42df28994eba7b56c762f7bbe7efd5611a1cd15b
https://git.kernel.org/stable/c/8fb6112bd49c0e49f2cf51604231d85ff00284bb
https://git.kernel.org/stable/c/96e0028debdd07a6d582f0dfadf9a3ec2b5fffff
https://git.kernel.org/stable/c/af8f6f39b8afd772fda4f8e61823ef8c021bf382
https://git.kernel.org/stable/c/bd4666bf5562fe8e8e5e9bd6fc805d30e1767f43
https://git.kernel.org/stable/c/ee7fc83ce0e6986ff9b1c1d7e994fbbf8d43861d
Frequently Asked Questions
What is CVE-2022-50703? +
In the Linux kernel, the following vulnerability has been resolved:
soc: qcom: smsm: Fix refcount leak bugs in qcom_smsm_probe()
There are two refcount leak bugs in qcom_smsm_probe():
(1) The 'local_node' is escaped out from for_each_child_of_node() as
the break of iteration, we should call of_node_put() for it in error
path or when it is not used anymore.
(2) The 'node' is escaped out from for_each_available_child_of_node()
as the 'goto', we should call of_node_put() for it in goto target.
How do I check if I'm vulnerable to CVE-2022-50703? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.