SB2025102336 - Use-after-free in Linux kernel drm meson driver
Published: October 23, 2025 Updated: October 26, 2025
Security Bulletin ID
SB2025102336
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Use-after-free (CVE-ID: CVE-2022-50560)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the meson_drv_probe() function in drivers/gpu/drm/meson/meson_drv.c. A local user can escalate privileges on the system.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/587c7da877219e6185217bf64418e62e114dab1e
- https://git.kernel.org/stable/c/6ef20de2fe0ee1decedbfabb17782897ca27bfe5
- https://git.kernel.org/stable/c/8616f2a0589a80e08434212324250eb22f6a66ce
- https://git.kernel.org/stable/c/8a427a22839daacd36531a62c83d5c9cd6f20657
- https://git.kernel.org/stable/c/f11aa996fc01888f870be0e79ba71526888c0d8a
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.19.17