CVE-2022-50046
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-50046
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-50046.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-50046
- Downstream
- Related
- Published
- 2025-06-18T11:15:33Z
- Modified
- 2025-08-09T20:01:27Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
net/sunrpc: fix potential memory leaks in rpcsysfsxprtstatechange()
The issue happens on some error handling paths. When the function fails to grab the object
xprt, it simply returns 0, forgetting to decrease the reference count of another objectxps, which is increased by rpcsysfsxprtkobjgetxprtswitch(), causing refcount leaks. Also, the function forgets to check whetherxpsis valid before using it, which may result in NULL-dereferencing issues.Fix it by adding proper error handling code when either
xprtorxpsis NULL. - References