CVE-2022-50489
drm/mipi-dsi: Detach devices when removing the host
Description
In the Linux kernel, the following vulnerability has been resolved: drm/mipi-dsi: Detach devices when removing the host Whenever the MIPI-DSI host is unregistered, the code of mipi_dsi_host_unregister() loops over every device currently found on that bus and will unregister it. However, it doesn't detach it from the bus first, which leads to all kind of resource leaks if the host wants to perform some clean up whenever a device is detached.
INFO
Published Date :
Oct. 4, 2025, 4:15 p.m.
Last Modified :
Oct. 6, 2025, 2:56 p.m.
Remotely Exploit :
No
Source :
416baaa9-dc9f-4396-8d5f-8c081fb06d67
Solution
- Update the Linux kernel to the latest stable version.
- Ensure all devices are properly detached before host unregistration.
- Verify resource cleanup procedures upon device detachment.
References to Advisories, Solutions, and Tools
Here, you will find a curated list of external links that provide in-depth
information, practical solutions, and valuable tools related to
CVE-2022-50489.
CWE - Common Weakness Enumeration
While CVE identifies
specific instances of vulnerabilities, CWE categorizes the common flaws or
weaknesses that can lead to vulnerabilities. CVE-2022-50489 is
associated with the following CWEs:
Common Attack Pattern Enumeration and Classification (CAPEC)
Common Attack Pattern Enumeration and Classification
(CAPEC)
stores attack patterns, which are descriptions of the common attributes and
approaches employed by adversaries to exploit the CVE-2022-50489
weaknesses.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2022-50489 vulnerability anywhere in the article.
The following table lists the changes that have been made to the
CVE-2022-50489 vulnerability over time.
Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.
-
New CVE Received by 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Oct. 04, 2025
Action Type Old Value New Value Added Description In the Linux kernel, the following vulnerability has been resolved: drm/mipi-dsi: Detach devices when removing the host Whenever the MIPI-DSI host is unregistered, the code of mipi_dsi_host_unregister() loops over every device currently found on that bus and will unregister it. However, it doesn't detach it from the bus first, which leads to all kind of resource leaks if the host wants to perform some clean up whenever a device is detached. Added Reference https://git.kernel.org/stable/c/262364574b05676d4b9ebde2ddd3588cd2efd8ce Added Reference https://git.kernel.org/stable/c/26c1b4cfe56f040f71a51c92da1f4cac2e3b9455 Added Reference https://git.kernel.org/stable/c/353ab1c13fdd6e524edde780235a8ce9b892c81c Added Reference https://git.kernel.org/stable/c/45120fa5e522d444e3fc1c5a9afc5d53eed91d00 Added Reference https://git.kernel.org/stable/c/668a8f17b5290d04ef7343636a5588a0692731a1 Added Reference https://git.kernel.org/stable/c/6fc2cd40db1969ba372ce9536dcfcdb87271eac4 Added Reference https://git.kernel.org/stable/c/8242167cfc83dd7e4c96f44b45f108db9bb88146 Added Reference https://git.kernel.org/stable/c/95ae458209f5a556bba98aff872f933694914eb7 Added Reference https://git.kernel.org/stable/c/c202cda08cd5693645d4990ad1eb2e8068a884ec