CVE-2022-50748

Summary

In the Linux kernel, the following vulnerability has been resolved:

ipc: mqueue: fix possible memory leak in init_mqueue_fs()

commit db7cfc380900 ("ipc: Free mq_sysctls if ipc namespace creation failed")

Here's a similar memory leak to the one fixed by the patch above. retire_mq_sysctls need to be called when init_mqueue_fs fails after setup_mq_sysctls.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxdc55e35f9e810f23dd69cfdc91a3d636023f57a2 < a1f321051e0dcf2415fb94f81fdc5044cad4c1d6affected
LinuxLinuxdc55e35f9e810f23dd69cfdc91a3d636023f57a2 < 55b3709c6d68e32cd3fdd2a630b1f4c97d51b17caffected
LinuxLinuxdc55e35f9e810f23dd69cfdc91a3d636023f57a2 < c579d60f0d0cd87552f64fdebe68b5d941d20309affected
LinuxLinux5.19affected
LinuxLinux0 < 5.19unaffected
LinuxLinux5.19.17 <= 5.19.*unaffected
LinuxLinux6.0.3 <= 6.0.*unaffected
LinuxLinux6.1 <= *unaffected

Weaknesses

References