cve-2022-49891
Vulnerability from cvelistv5
Published
2025-05-01 14:10
Modified
2025-05-01 14:10
Severity ?
Summary
tracing: kprobe: Fix memory leak in test_gen_kprobe/kretprobe_cmd()
References
416baaa9-dc9f-4396-8d5f-8c081fb06d67https://git.kernel.org/stable/c/66f0919c953ef7b55e5ab94389a013da2ce80a2c
416baaa9-dc9f-4396-8d5f-8c081fb06d67https://git.kernel.org/stable/c/71aeb8d01a8c7ab5cf7da3f81b35206f56ce6bca
416baaa9-dc9f-4396-8d5f-8c081fb06d67https://git.kernel.org/stable/c/bef08acbe560a926b4cee9cc46404cc98ae5703b
416baaa9-dc9f-4396-8d5f-8c081fb06d67https://git.kernel.org/stable/c/d1b6a8e3414aeaa0985139180c145d2d0fbd2a49
Impacted products
LinuxLinux
LinuxLinux
Show details on NVD website

To clipboard 

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "kernel/trace/kprobe_event_gen_test.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "bef08acbe560a926b4cee9cc46404cc98ae5703b",
              "status": "affected",
              "version": "64836248dda20c8e7427b493f7e06d9bf8f58850",
              "versionType": "git"
            },
            {
              "lessThan": "d1b6a8e3414aeaa0985139180c145d2d0fbd2a49",
              "status": "affected",
              "version": "64836248dda20c8e7427b493f7e06d9bf8f58850",
              "versionType": "git"
            },
            {
              "lessThan": "71aeb8d01a8c7ab5cf7da3f81b35206f56ce6bca",
              "status": "affected",
              "version": "64836248dda20c8e7427b493f7e06d9bf8f58850",
              "versionType": "git"
            },
            {
              "lessThan": "66f0919c953ef7b55e5ab94389a013da2ce80a2c",
              "status": "affected",
              "version": "64836248dda20c8e7427b493f7e06d9bf8f58850",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "kernel/trace/kprobe_event_gen_test.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.6"
            },
            {
              "lessThan": "5.6",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.154",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.78",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.*",
              "status": "unaffected",
              "version": "6.0.8",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.1",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: kprobe: Fix memory leak in test_gen_kprobe/kretprobe_cmd()\n\ntest_gen_kprobe_cmd() only free buf in fail path, hence buf will leak\nwhen there is no failure. Move kfree(buf) from fail path to common path\nto prevent the memleak. The same reason and solution in\ntest_gen_kretprobe_cmd().\n\nunreferenced object 0xffff888143b14000 (size 2048):\n  comm \"insmod\", pid 52490, jiffies 4301890980 (age 40.553s)\n  hex dump (first 32 bytes):\n    70 3a 6b 70 72 6f 62 65 73 2f 67 65 6e 5f 6b 70  p:kprobes/gen_kp\n    72 6f 62 65 5f 74 65 73 74 20 64 6f 5f 73 79 73  robe_test do_sys\n  backtrace:\n    [\u003c000000006d7b836b\u003e] kmalloc_trace+0x27/0xa0\n    [\u003c0000000009528b5b\u003e] 0xffffffffa059006f\n    [\u003c000000008408b580\u003e] do_one_initcall+0x87/0x2a0\n    [\u003c00000000c4980a7e\u003e] do_init_module+0xdf/0x320\n    [\u003c00000000d775aad0\u003e] load_module+0x3006/0x3390\n    [\u003c00000000e9a74b80\u003e] __do_sys_finit_module+0x113/0x1b0\n    [\u003c000000003726480d\u003e] do_syscall_64+0x35/0x80\n    [\u003c000000003441e93b\u003e] entry_SYSCALL_64_after_hwframe+0x46/0xb0"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-01T14:10:35.115Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/bef08acbe560a926b4cee9cc46404cc98ae5703b"
        },
        {
          "url": "https://git.kernel.org/stable/c/d1b6a8e3414aeaa0985139180c145d2d0fbd2a49"
        },
        {
          "url": "https://git.kernel.org/stable/c/71aeb8d01a8c7ab5cf7da3f81b35206f56ce6bca"
        },
        {
          "url": "https://git.kernel.org/stable/c/66f0919c953ef7b55e5ab94389a013da2ce80a2c"
        }
      ],
      "title": "tracing: kprobe: Fix memory leak in test_gen_kprobe/kretprobe_cmd()",
      "x_generator": {
        "engine": "bippy-1.1.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-49891",
    "datePublished": "2025-05-01T14:10:35.115Z",
    "dateReserved": "2025-05-01T14:05:17.243Z",
    "dateUpdated": "2025-05-01T14:10:35.115Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2022-49891\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2025-05-01T15:16:14.107\",\"lastModified\":\"2025-05-01T15:16:14.107\",\"vulnStatus\":\"Received\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\ntracing: kprobe: Fix memory leak in test_gen_kprobe/kretprobe_cmd()\\n\\ntest_gen_kprobe_cmd() only free buf in fail path, hence buf will leak\\nwhen there is no failure. Move kfree(buf) from fail path to common path\\nto prevent the memleak. The same reason and solution in\\ntest_gen_kretprobe_cmd().\\n\\nunreferenced object 0xffff888143b14000 (size 2048):\\n  comm \\\"insmod\\\", pid 52490, jiffies 4301890980 (age 40.553s)\\n  hex dump (first 32 bytes):\\n    70 3a 6b 70 72 6f 62 65 73 2f 67 65 6e 5f 6b 70  p:kprobes/gen_kp\\n    72 6f 62 65 5f 74 65 73 74 20 64 6f 5f 73 79 73  robe_test do_sys\\n  backtrace:\\n    [\u003c000000006d7b836b\u003e] kmalloc_trace+0x27/0xa0\\n    [\u003c0000000009528b5b\u003e] 0xffffffffa059006f\\n    [\u003c000000008408b580\u003e] do_one_initcall+0x87/0x2a0\\n    [\u003c00000000c4980a7e\u003e] do_init_module+0xdf/0x320\\n    [\u003c00000000d775aad0\u003e] load_module+0x3006/0x3390\\n    [\u003c00000000e9a74b80\u003e] __do_sys_finit_module+0x113/0x1b0\\n    [\u003c000000003726480d\u003e] do_syscall_64+0x35/0x80\\n    [\u003c000000003441e93b\u003e] entry_SYSCALL_64_after_hwframe+0x46/0xb0\"}],\"metrics\":{},\"references\":[{\"url\":\"https://git.kernel.org/stable/c/66f0919c953ef7b55e5ab94389a013da2ce80a2c\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/71aeb8d01a8c7ab5cf7da3f81b35206f56ce6bca\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/bef08acbe560a926b4cee9cc46404cc98ae5703b\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/d1b6a8e3414aeaa0985139180c145d2d0fbd2a49\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.