Description

In the Linux kernel, the following vulnerability has been resolved: net/9p: Fix a potential socket leak in p9_socket_open Both p9_fd_create_tcp() and p9_fd_create_unix() will call p9_socket_open(). If the creation of p9_trans_fd fails, p9_fd_create_tcp() and p9_fd_create_unix() will return an error directly instead of releasing the cscoket, which will result in a socket leak. This patch adds sock_release() to fix the leak issue.

INFO

Published Date :

2024-10-21T20:06:27.976Z

Last Modified :

2025-05-04T08:28:13.138Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-49020 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-49020.

URL Resource
https://git.kernel.org/stable/c/0396227f4daf4792a6a8aaa3b7771dc25c4cd443 cve-icon cve-icon
https://git.kernel.org/stable/c/2d24d91b9f44620824fc37b766f7cae00ca32748 cve-icon cve-icon
https://git.kernel.org/stable/c/8782b32ef867de7981bbe9e86ecb90e92e8780bd cve-icon cve-icon
https://git.kernel.org/stable/c/8b14bd0b500aec1458b51cb621c8e5fab3304260 cve-icon cve-icon
https://git.kernel.org/stable/c/aa08323fe18cb7cf95317ffa2d54ca1de8e74ebd cve-icon cve-icon
https://git.kernel.org/stable/c/dcc14cfd7debe11b825cb077e75d91d2575b4cb8 cve-icon cve-icon
https://git.kernel.org/stable/c/ded893965b895b2dccd3d1436d8d3daffa23ea64 cve-icon cve-icon
https://git.kernel.org/stable/c/e01c1542379fb395e7da53706df598f38905dfbf cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024102154-CVE-2022-49020-2d32@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49020 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49020 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact