CVE-2022-50076

{"id": "CVE-2022-50076", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.8}]}, "published": "2025-06-18T11:15:36.513", "references": [{"url": "https://git.kernel.org/stable/c/60b6d38add7b9c17d6e5d49ee8e930ea1a5650c5", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/860efae127888ae535bc4eda1b7f27642727c69e", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/ca08d0eac020d48a3141dbec0a3cf64fbdb17cde", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-401"}]}], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: Fix memory leak on the deferred close\n\nxfstests on smb21 report kmemleak as below:\n\n unreferenced object 0xffff8881767d6200 (size 64):\n comm \"xfs_io\", pid 1284, jiffies 4294777434 (age 20.789s)\n hex dump (first 32 bytes):\n 80 5a d0 11 81 88 ff ff 78 8a aa 63 81 88 ff ff .Z......x..c....\n 00 71 99 76 81 88 ff ff 00 00 00 00 00 00 00 00 .q.v............\n backtrace:\n [<00000000ad04e6ea>] cifs_close+0x92/0x2c0\n [<0000000028b93c82>] __fput+0xff/0x3f0\n [<00000000d8116851>] task_work_run+0x85/0xc0\n [<0000000027e14f9e>] do_exit+0x5e5/0x1240\n [<00000000fb492b95>] do_group_exit+0x58/0xe0\n [<00000000129a32d9>] __x64_sys_exit_group+0x28/0x30\n [<00000000e3f7d8e9>] do_syscall_64+0x35/0x80\n [<00000000102e8a0b>] entry_SYSCALL_64_after_hwframe+0x46/0xb0\n\nWhen cancel the deferred close work, we should also cleanup the struct\ncifs_deferred_close."}, {"lang": "es", "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: cifs: Se corrige la p\u00e9rdida de memoria en el cierre diferido. xfstests en smb21 informa kmemleak como se muestra a continuaci\u00f3n: objeto sin referencia 0xffff8881767d6200 (tama\u00f1o 64): comm \"xfs_io\", pid 1284, jiffies 4294777434 (edad 20,789 s) volcado hexadecimal (primeros 32 bytes): 80 5a d0 11 81 88 ff ff 78 8a aa 63 81 88 ff ff .Z......x..c.... 00 71 99 76 81 88 ff ff 00 00 00 00 00 00 00 00 .qv........... backtrace: [&lt;00000000ad04e6ea&gt;] cifs_close+0x92/0x2c0 [&lt;0000000028b93c82&gt;] __fput+0xff/0x3f0 [&lt;00000000d8116851&gt;] task_work_run+0x85/0xc0 [&lt;0000000027e14f9e&gt;] do_exit+0x5e5/0x1240 [&lt;00000000fb492b95&gt;] do_group_exit+0x58/0xe0 [&lt;00000000129a32d9&gt;] __x64_sys_exit_group+0x28/0x30 [&lt;00000000e3f7d8e9&gt;] do_syscall_64+0x35/0x80 [&lt;00000000102e8a0b&gt;] entry_SYSCALL_64_after_hwframe+0x46/0xb0 Cuando cancelamos el trabajo de cierre diferido, tambi\u00e9n debemos limpiar la estructura cifs_deferred_close."}], "lastModified": "2025-11-17T19:27:41.060", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A6734076-32F7-4DF9-9522-F5BC3760B69A", "versionEndExcluding": "5.14", "versionStartIncluding": "5.13.12"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BC3E27E7-4372-46C2-8000-25E25F439B83", "versionEndExcluding": "5.15.63", "versionStartIncluding": "5.14.1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E669300-DA42-4ACD-86D8-68BE5F29FB88", "versionEndExcluding": "5.19.4", "versionStartIncluding": "5.16"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:5.14:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6A05198E-F8FA-4517-8D0E-8C95066AED38"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:5.14:rc6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "15013998-4AF0-4CDC-AB13-829ECD8A8E66"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:5.14:rc7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "376A25CF-C05B-48F1-99B1-8FB0314A8E06"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.0:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E8BD11A3-8643-49B6-BADE-5029A0117325"}], "operator": "OR"}]}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}