Description

In the Linux kernel, the following vulnerability has been resolved: ima: Fix potential memory leak in ima_init_crypto() On failure to allocate the SHA1 tfm, IMA fails to initialize and exits without freeing the ima_algo_array. Add the missing kfree() for ima_algo_array to avoid the potential memory leak.

INFO

Published Date :

2025-02-26T02:23:41.763Z

Last Modified :

2025-10-01T20:17:06.268Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-49627 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-49627.

URL Resource
https://git.kernel.org/stable/c/067d2521874135267e681c19d42761c601d503d6 cve-icon cve-icon
https://git.kernel.org/stable/c/601ae26aa2802a4c10c94d7388a99eabdbefab2b cve-icon cve-icon
https://git.kernel.org/stable/c/830de9667b3ada0a75a3f098dfc7159709fe397b cve-icon cve-icon
https://git.kernel.org/stable/c/c1d9702ceb4a091da6bee380627596d1fba09274 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025022616-CVE-2022-49627-ec2b@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49627 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49627 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact