CVE-2022-49822

MEDIUM

Linux Kernel < 5.15.81 - Memory Leak

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix connections leak when tlink setup failed If the tlink setup failed, lost to put the connections, then the module refcnt leak since the cifsd kthread not exit. Also leak the fscache info, and for next mount with fsc, it will print the follow errors: CIFS: Cache volume key already in use (cifs,127.0.0.1:445,TEST) Let's check the result of tlink setup, and do some cleanup.

References (3)

[Patch] https://git.kernel.org/stable/c/0a087842d10b5daa123ee5291e386cdd78413705

[Patch] https://git.kernel.org/stable/c/1dcdf5f5b2137185cbdd5385f29949ab3da4f00c

[Patch] https://git.kernel.org/stable/c/a9059e338fc000c0b87d8cf29e93c74fd703212e

Scores

CVSS v3 5.5

EPSS 0.0005

EPSS Percentile 15.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-401

Status published

Affected Products (8)

linux/linux_kernel < 5.15.81

linux/linux_kernel

linux/Kernel < 5.15.81linux

linux/Kernel < 6.0.10linux

Timeline

Published May 01, 2025

Tracked Since Feb 18, 2026