CVE-2022-48639

Summary

In the Linux kernel, the following vulnerability has been resolved:

net: sched: fix possible refcount leak in tc_new_tfilter()

tfilter_put need to be called to put the refount got by tp->ops->get to avoid possible refcount leak when chain->tmplt_ops != NULL and chain->tmplt_ops != tp->ops.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7d5509fa0d3ddfe252b4418513e493ac98de3317 < 903f7d322c17d8e306d766404b4604e81653902aaffected
LinuxLinux7d5509fa0d3ddfe252b4418513e493ac98de3317 < 8844c750eeb03452e2b3319c27a526f447b82596affected
LinuxLinux7d5509fa0d3ddfe252b4418513e493ac98de3317 < f8162aed962be8fa07445b2b5928e84ab40dd8d7affected
LinuxLinux7d5509fa0d3ddfe252b4418513e493ac98de3317 < 0559d91ee3a2cd81b15ad5cd507539d6da867f88affected
LinuxLinux7d5509fa0d3ddfe252b4418513e493ac98de3317 < c2e1cfefcac35e0eea229e148c8284088ce437b5affected
LinuxLinux5.1affected
LinuxLinux0 < 5.1unaffected
LinuxLinux5.4.215 <= 5.4.*unaffected
LinuxLinux5.10.146 <= 5.10.*unaffected
LinuxLinux5.15.71 <= 5.15.*unaffected
LinuxLinux5.19.12 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References