CVE-2022-50351

Summary

In the Linux kernel, the following vulnerability has been resolved:

cifs: Fix xid leak in cifs_create()

If the cifs already shutdown, we should free the xid before return, otherwise, the xid will be leaked.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux087f757b0129850c99cc9116df4909dac1bce871 < 593d877c39aa9f3fe1a4b5b022492886d7d700ecaffected
LinuxLinux087f757b0129850c99cc9116df4909dac1bce871 < 92aa09c86ef297976a3c27c6574c0839418dc2c4affected
LinuxLinux087f757b0129850c99cc9116df4909dac1bce871 < fee0fb1f15054bb6a0ede452acb42da5bef4d587affected
LinuxLinux5.13affected
LinuxLinux0 < 5.13unaffected
LinuxLinux5.15.76 <= 5.15.*unaffected
LinuxLinux6.0.6 <= 6.0.*unaffected
LinuxLinux6.1 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References