CVE - CVE-2022-49853

CVE-ID
CVE-2022-49853	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: net: macvlan: fix memory leaks of macvlan_common_newlink kmemleak reports memory leaks in macvlan_common_newlink, as follows: ip link add link eth0 name .. type macvlan mode source macaddr add <MAC-ADDR> kmemleak reports: unreferenced object 0xffff8880109bb140 (size 64): comm "ip", pid 284, jiffies 4294986150 (age 430.108s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 b8 aa 5a 12 80 88 ff ff ..........Z..... 80 1b fa 0d 80 88 ff ff 1e ff ac af c7 c1 6b 6b ..............kk backtrace: [<ffffffff813e06a7>] kmem_cache_alloc_trace+0x1c7/0x300 [<ffffffff81b66025>] macvlan_hash_add_source+0x45/0xc0 [<ffffffff81b66a67>] macvlan_changelink_sources+0xd7/0x170 [<ffffffff81b6775c>] macvlan_common_newlink+0x38c/0x5a0 [<ffffffff81b6797e>] macvlan_newlink+0xe/0x20 [<ffffffff81d97f8f>] __rtnl_newlink+0x7af/0xa50 [<ffffffff81d98278>] rtnl_newlink+0x48/0x70 ... In the scenario where the macvlan mode is configured as 'source', macvlan_changelink_sources() will be execured to reconfigure list of remote source mac addresses, at the same time, if register_netdevice() return an error, the resource generated by macvlan_changelink_sources() is not cleaned up. Using this patch, in the case of an error, it will execute macvlan_flush_sources() to ensure that the resource is cleaned up.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/21d3a8b6a1e39e7529ce9de07316ee13a63f305b URL:https://git.kernel.org/stable/c/21d3a8b6a1e39e7529ce9de07316ee13a63f305b MISC:https://git.kernel.org/stable/c/23569b5652ee8e8e55a12f7835f59af6f3cefc30 URL:https://git.kernel.org/stable/c/23569b5652ee8e8e55a12f7835f59af6f3cefc30 MISC:https://git.kernel.org/stable/c/685e73e3f7a9fb75cbf049a9d0b7c45cc6b57b2e URL:https://git.kernel.org/stable/c/685e73e3f7a9fb75cbf049a9d0b7c45cc6b57b2e MISC:https://git.kernel.org/stable/c/956e0216a19994443c90ba2ea6b0b284c9c4f9cb URL:https://git.kernel.org/stable/c/956e0216a19994443c90ba2ea6b0b284c9c4f9cb MISC:https://git.kernel.org/stable/c/9ea003c4671b2fc455320ecf6d4a43b0a3c1878a URL:https://git.kernel.org/stable/c/9ea003c4671b2fc455320ecf6d4a43b0a3c1878a MISC:https://git.kernel.org/stable/c/9f288e338be206713d79b29144c27fca4503c39b URL:https://git.kernel.org/stable/c/9f288e338be206713d79b29144c27fca4503c39b MISC:https://git.kernel.org/stable/c/a81b44d1df1f07f00c0dcc0a0b3d2fa24a46289e URL:https://git.kernel.org/stable/c/a81b44d1df1f07f00c0dcc0a0b3d2fa24a46289e MISC:https://git.kernel.org/stable/c/a8d67367ab33604326cc37ab44fd1801bf5691ba URL:https://git.kernel.org/stable/c/a8d67367ab33604326cc37ab44fd1801bf5691ba
Assigning CNA
kernel.org
Date Record Created
20250501	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20250501)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)