CVE - CVE-2022-49020

CVE-ID
CVE-2022-49020	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: net/9p: Fix a potential socket leak in p9_socket_open Both p9_fd_create_tcp() and p9_fd_create_unix() will call p9_socket_open(). If the creation of p9_trans_fd fails, p9_fd_create_tcp() and p9_fd_create_unix() will return an error directly instead of releasing the cscoket, which will result in a socket leak. This patch adds sock_release() to fix the leak issue.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/0396227f4daf4792a6a8aaa3b7771dc25c4cd443 URL:https://git.kernel.org/stable/c/0396227f4daf4792a6a8aaa3b7771dc25c4cd443 MISC:https://git.kernel.org/stable/c/2d24d91b9f44620824fc37b766f7cae00ca32748 URL:https://git.kernel.org/stable/c/2d24d91b9f44620824fc37b766f7cae00ca32748 MISC:https://git.kernel.org/stable/c/8782b32ef867de7981bbe9e86ecb90e92e8780bd URL:https://git.kernel.org/stable/c/8782b32ef867de7981bbe9e86ecb90e92e8780bd MISC:https://git.kernel.org/stable/c/8b14bd0b500aec1458b51cb621c8e5fab3304260 URL:https://git.kernel.org/stable/c/8b14bd0b500aec1458b51cb621c8e5fab3304260 MISC:https://git.kernel.org/stable/c/aa08323fe18cb7cf95317ffa2d54ca1de8e74ebd URL:https://git.kernel.org/stable/c/aa08323fe18cb7cf95317ffa2d54ca1de8e74ebd MISC:https://git.kernel.org/stable/c/dcc14cfd7debe11b825cb077e75d91d2575b4cb8 URL:https://git.kernel.org/stable/c/dcc14cfd7debe11b825cb077e75d91d2575b4cb8 MISC:https://git.kernel.org/stable/c/ded893965b895b2dccd3d1436d8d3daffa23ea64 URL:https://git.kernel.org/stable/c/ded893965b895b2dccd3d1436d8d3daffa23ea64 MISC:https://git.kernel.org/stable/c/e01c1542379fb395e7da53706df598f38905dfbf URL:https://git.kernel.org/stable/c/e01c1542379fb395e7da53706df598f38905dfbf
Assigning CNA
kernel.org
Date Record Created
20240822	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20240822)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)