CVE-2022-49890

Description

In the Linux kernel, the following vulnerability has been resolved: capabilities: fix potential memleak on error path from vfs_getxattr_alloc() In cap_inode_getsecurity(), we will use vfs_getxattr_alloc() to complete the memory allocation of tmpbuf, if we have completed the memory allocation of tmpbuf, but failed to call handler->get(...), there will be a memleak in below logic: |-- ret = (int)vfs_getxattr_alloc(mnt_userns, ...) | /* ^^^ alloc for tmpbuf */ |-- value = krealloc(*xattr_value, error + 1, flags) | /* ^^^ alloc memory */ |-- error = handler->get(handler, ...) | /* error! */ |-- *xattr_value = value | /* xattr_value is &tmpbuf (memory leak!) */ So we will try to free(tmpbuf) after vfs_getxattr_alloc() fails to fix it. [PM: subject line and backtrace tweaks]

Reserved 2025-05-01 | Published 2025-05-01 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

8db6c34f1dbc8e06aa016a9b829b06902c3e1340 before 6bb00eb21c0fbf18e5d3538c9ff0cf63fd0ace85
affected

8db6c34f1dbc8e06aa016a9b829b06902c3e1340 before 90577bcc01c4188416a47269f8433f70502abe98
affected

8db6c34f1dbc8e06aa016a9b829b06902c3e1340 before 0c3e6288da650d1ec911a259c77bc2d88e498603
affected

8db6c34f1dbc8e06aa016a9b829b06902c3e1340 before cdf01c807e974048c43c7fd3ca574f6086a57906
affected

8db6c34f1dbc8e06aa016a9b829b06902c3e1340 before 2de8eec8afb75792440b8900a01d52b8f6742fd1
affected

8db6c34f1dbc8e06aa016a9b829b06902c3e1340 before 7480aeff0093d8c54377553ec6b31110bea37b4d
affected

8db6c34f1dbc8e06aa016a9b829b06902c3e1340 before 8cf0a1bc12870d148ae830a4ba88cfdf0e879cee
affected

Default status
affected

4.14
affected

Any version before 4.14
unaffected

4.14.299
unaffected

4.19.265
unaffected

5.4.224
unaffected

5.10.154
unaffected

5.15.78
unaffected

6.0.8
unaffected

6.1
unaffected

References

git.kernel.org/...c/6bb00eb21c0fbf18e5d3538c9ff0cf63fd0ace85

git.kernel.org/...c/90577bcc01c4188416a47269f8433f70502abe98

git.kernel.org/...c/0c3e6288da650d1ec911a259c77bc2d88e498603

git.kernel.org/...c/cdf01c807e974048c43c7fd3ca574f6086a57906

git.kernel.org/...c/2de8eec8afb75792440b8900a01d52b8f6742fd1

git.kernel.org/...c/7480aeff0093d8c54377553ec6b31110bea37b4d

git.kernel.org/...c/8cf0a1bc12870d148ae830a4ba88cfdf0e879cee

cve.org (CVE-2022-49890)

nvd.nist.gov (CVE-2022-49890)

Download JSON