CVE-2022-49190

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-49190
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49190.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-49190
Downstream
Related
Published
2025-02-26T01:55:37.629Z
Modified
2026-03-20T12:22:15.003726Z
Summary
kernel/resource: fix kfree() of bootmem memory again
Details

In the Linux kernel, the following vulnerability has been resolved:

kernel/resource: fix kfree() of bootmem memory again

Since commit ebff7d8f270d ("mem hotunplug: fix kfree() of bootmem memory"), we could get a resource allocated during boot via allocresource(). And it's required to release the resource using freeresource(). Howerver, many people use kfree directly which will result in kernel BUG. In order to fix this without fixing every call site, just leak a couple of bytes in such corner case.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49190.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
ebff7d8f270d045338d9f4796014f4db429a17f9
Fixed
3379a60f6bb4afcd9c456e340ac525ae649d3ce7
Fixed
a9e88c2618d228d7a4e7e515cf30dc0d0d813f27
Fixed
d7faa04a44a0c37ac3d222fa8e0bdcbfcee9c0c8
Fixed
ab86020070999e758ce2e60c4348f20bf7ddba56
Fixed
0cbcc92917c5de80f15c24d033566539ad696892

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49190.json"