CVE-2022-49996

Summary

In the Linux kernel, the following vulnerability has been resolved:

btrfs: fix possible memory leak in btrfs_get_dev_args_from_path()

In btrfs_get_dev_args_from_path(), btrfs_get_bdev_and_sb() can fail if the path is invalid. In this case, btrfs_get_dev_args_from_path() returns directly without freeing args->uuid and args->fsid allocated before, which causes memory leak.

To fix these possible leaks, when btrfs_get_bdev_and_sb() fails, btrfs_put_dev_args_from_path() is called to clean up the memory.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux321a81835b4aed4f717f89921286f6544ffa8be9 < 5f52402c77013e4a826394b807dd5ea4dc83bd72affected
LinuxLinuxfaa775c41d655a4786e9d53cb075a77bb5a75f66 < 4b124ad87244cd7f0883c5eaa38d2326b2154cadaffected
LinuxLinuxfaa775c41d655a4786e9d53cb075a77bb5a75f66 < 9ea0106a7a3d8116860712e3f17cd52ce99f6707affected
LinuxLinux5.15.54 < 5.15.64affected
LinuxLinux5.16affected
LinuxLinux0 < 5.16unaffected
LinuxLinux5.15.64 <= 5.15.*unaffected
LinuxLinux5.19.6 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

References