CVE-2022-50074

Description

In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix memleak in aa_simple_write_to_buffer() When copy_from_user failed, the memory is freed by kvfree. however the management struct and data blob are allocated independently, so only kvfree(data) cause a memleak issue here. Use aa_put_loaddata(data) to fix this issue.

Reserved 2025-06-18 | Published 2025-06-18 | Updated 2025-06-18 | Assigner Linux

Product status

Default status
unaffected

a6a52579e52b55448326db88bd9a5740e7c1a037 before 6500eb3a48ac221051b1791818a1ac74744ef617
affected

a6a52579e52b55448326db88bd9a5740e7c1a037 before 7db182a2ebeefded86fea542fcc5d6a68bb77f58
affected

a6a52579e52b55448326db88bd9a5740e7c1a037 before 8aab4295582eb397a125d2788b829fa62b88dbf7
affected

a6a52579e52b55448326db88bd9a5740e7c1a037 before bf7ebebce2c25071c719fd8a2f1307e0c243c2d7
affected

a6a52579e52b55448326db88bd9a5740e7c1a037 before 6583edbf459de2e06b9759f264c0ae27e452b97a
affected

a6a52579e52b55448326db88bd9a5740e7c1a037 before 417ea9fe972d2654a268ad66e89c8fcae67017c3
affected

Default status
affected

4.17
affected

Any version before 4.17
unaffected

4.19.256
unaffected

5.4.211
unaffected

5.10.138
unaffected

5.15.63
unaffected

5.19.4
unaffected

6.0
unaffected

References

git.kernel.org/...c/6500eb3a48ac221051b1791818a1ac74744ef617

git.kernel.org/...c/7db182a2ebeefded86fea542fcc5d6a68bb77f58

git.kernel.org/...c/8aab4295582eb397a125d2788b829fa62b88dbf7

git.kernel.org/...c/bf7ebebce2c25071c719fd8a2f1307e0c243c2d7

git.kernel.org/...c/6583edbf459de2e06b9759f264c0ae27e452b97a

git.kernel.org/...c/417ea9fe972d2654a268ad66e89c8fcae67017c3

cve.org (CVE-2022-50074)

nvd.nist.gov (CVE-2022-50074)

Download JSON