Description

In the Linux kernel, the following vulnerability has been resolved: net/sunrpc: fix potential memory leaks in rpc_sysfs_xprt_state_change() The issue happens on some error handling paths. When the function fails to grab the object `xprt`, it simply returns 0, forgetting to decrease the reference count of another object `xps`, which is increased by rpc_sysfs_xprt_kobj_get_xprt_switch(), causing refcount leaks. Also, the function forgets to check whether `xps` is valid before using it, which may result in NULL-dereferencing issues. Fix it by adding proper error handling code when either `xprt` or `xps` is NULL.

INFO

Published Date :

2025-06-18T11:01:47.155Z

Last Modified :

2025-06-18T11:01:47.155Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-50046 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-50046.

URL Resource
https://git.kernel.org/stable/c/76fbeb1662b1c56514325118a07fba74dc4c79fe cve-icon cve-icon
https://git.kernel.org/stable/c/bfc48f1b0505ffcb03a6d749139b7577d6b81ae0 cve-icon cve-icon
https://git.kernel.org/stable/c/c0434f0e058648649250b8ed6078b66d773de723 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025061844-CVE-2022-50046-9cac@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-50046 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-50046 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact