cve-2022-49897
Vulnerability from cvelistv5
Published
2025-05-01 14:10
Modified
2025-05-04 08:48
Severity ?
EPSS score ?
Summary
fscrypt: fix keyring memory leak on mount failure
References
{
"containers": {
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"fs/crypto/keyring.c",
"fs/super.c",
"include/linux/fscrypt.h"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "29997a6fa60de1de2fa0de471e7652efa6e95868",
"status": "affected",
"version": "391cceee6d435e616f68631e68f5b32d480b1e67",
"versionType": "git"
},
{
"lessThan": "cff805b1518f38d57866065343db2285f2dcd5ab",
"status": "affected",
"version": "e6f4fd85ef1ee6ab356bfbd64df28c1cb73aee7e",
"versionType": "git"
},
{
"lessThan": "0b1747653b102c555bac745ebe5ca86cdd20e43f",
"status": "affected",
"version": "68d15d6558a386f46d815a6ac39edecad713a1bf",
"versionType": "git"
},
{
"lessThan": "ccd30a476f8e864732de220bd50e6f372f5ebcab",
"status": "affected",
"version": "d7e7b9af104c7b389a0c21eb26532511bce4b510",
"versionType": "git"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"fs/crypto/keyring.c",
"fs/super.c",
"include/linux/fscrypt.h"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux"
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nfscrypt: fix keyring memory leak on mount failure\n\nCommit d7e7b9af104c (\"fscrypt: stop using keyrings subsystem for\nfscrypt_master_key\") moved the keyring destruction from __put_super() to\ngeneric_shutdown_super() so that the filesystem\u0027s block device(s) are\nstill available. Unfortunately, this causes a memory leak in the case\nwhere a mount is attempted with the test_dummy_encryption mount option,\nbut the mount fails after the option has already been processed.\n\nTo fix this, attempt the keyring destruction in both places."
}
],
"providerMetadata": {
"dateUpdated": "2025-05-04T08:48:01.912Z",
"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"shortName": "Linux"
},
"references": [
{
"url": "https://git.kernel.org/stable/c/29997a6fa60de1de2fa0de471e7652efa6e95868"
},
{
"url": "https://git.kernel.org/stable/c/cff805b1518f38d57866065343db2285f2dcd5ab"
},
{
"url": "https://git.kernel.org/stable/c/0b1747653b102c555bac745ebe5ca86cdd20e43f"
},
{
"url": "https://git.kernel.org/stable/c/ccd30a476f8e864732de220bd50e6f372f5ebcab"
}
],
"title": "fscrypt: fix keyring memory leak on mount failure",
"x_generator": {
"engine": "bippy-1.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"assignerShortName": "Linux",
"cveId": "CVE-2022-49897",
"datePublished": "2025-05-01T14:10:39.179Z",
"dateReserved": "2025-05-01T14:05:17.244Z",
"dateUpdated": "2025-05-04T08:48:01.912Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2022-49897\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2025-05-01T15:16:14.747\",\"lastModified\":\"2025-05-02T13:52:51.693\",\"vulnStatus\":\"Undergoing Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nfscrypt: fix keyring memory leak on mount failure\\n\\nCommit d7e7b9af104c (\\\"fscrypt: stop using keyrings subsystem for\\nfscrypt_master_key\\\") moved the keyring destruction from __put_super() to\\ngeneric_shutdown_super() so that the filesystem\u0027s block device(s) are\\nstill available. Unfortunately, this causes a memory leak in the case\\nwhere a mount is attempted with the test_dummy_encryption mount option,\\nbut the mount fails after the option has already been processed.\\n\\nTo fix this, attempt the keyring destruction in both places.\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: fscrypt: correcci\u00f3n de fuga de memoria del llavero en caso de fallo de montaje. El commit d7e7b9af104c (\\\"fscrypt: dejar de usar el subsistema de llaveros para fscrypt_master_key\\\") traslad\u00f3 la destrucci\u00f3n del llavero de __put_super() a generic_shutdown_super() para que los dispositivos de bloque del sistema de archivos sigan disponibles. Desafortunadamente, esto provoca una fuga de memoria si se intenta un montaje con la opci\u00f3n test_dummy_encryption, pero el montaje falla despu\u00e9s de que la opci\u00f3n ya se haya procesado. Para solucionarlo, intente la destrucci\u00f3n del llavero en ambos lugares.\"}],\"metrics\":{},\"references\":[{\"url\":\"https://git.kernel.org/stable/c/0b1747653b102c555bac745ebe5ca86cdd20e43f\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/29997a6fa60de1de2fa0de471e7652efa6e95868\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/ccd30a476f8e864732de220bd50e6f372f5ebcab\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/cff805b1518f38d57866065343db2285f2dcd5ab\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}]}}"
}
}
Loading...
Loading...
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.