DEBIAN-CVE-2022-48699

See a problem?
Please try reporting it to the source first.

Source

https://security-tracker.debian.org/tracker/CVE-2022-48699

Import Source

https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2022-48699.json

JSON Data

https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2022-48699

Upstream

CVE-2022-48699

Published

2024-05-03T16:15:08Z

Modified

2025-09-19T06:08:55Z

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved: sched/debug: fix dentry leak in updatescheddomaindebugfs Kuyo reports that the pattern of using debugfsremove(debugfslookup()) leaks a dentry and with a hotplug stress test, the machine eventually runs out of memory. Fix this up by using the newly created debugfslookupandremove() call instead which properly handles the dentry reference counting logic.

References

https://security-tracker.debian.org/tracker/CVE-2022-48699

Affected packages

Debian:12 / linux

Package

Name: linux
Purl: pkg:deb/debian/linux?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.19.11-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / linux

Package

Name: linux
Purl: pkg:deb/debian/linux?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.19.11-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:14 / linux

Package

Name: linux
Purl: pkg:deb/debian/linux?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.19.11-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}