CVE-2022-50754 — Linux vulnerability

7 documents6 sources

Severity

—N/A

No vector

EPSS

0.0%

top 89.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix a memleak in multi_transaction_new() In multi_transaction_new(), the variable t is not freed or passed out on the failure of copy_from_user(t->data, buf, size), which could lead to a memleak. Fix this bug by adding a put_multi_transaction(t) in the error path.

Affected Packages4 packages

▶Linuxlinux/linux_kernel4.13.0 — 4.14.303+6

▶Debianlinux/linux_kernel< 5.10.178-1+3

▶CVEListV5linux/linux1dea3b41e84c5923173fe654dcb758a5cb4a46e5 — 11d5fe7da67c3334cefc981297fd5defb78df15c+8

▶debiandebian/linux< linux 6.1.4-1 (bookworm)

🔴Vulnerability Details

OSV

apparmor: fix a memleak in multi_transaction_new()↗2025-12-24

▶

GHSA

GHSA-fx2h-pcqr-7fq9: In the Linux kernel, the following vulnerability has been resolved: apparmor: fix a memleak in multi_transaction_new() In multi_transaction_new(), t↗2025-12-24

▶

OSV

CVE-2022-50754: In the Linux kernel, the following vulnerability has been resolved: apparmor: fix a memleak in multi_transaction_new() In multi_transaction_new(), the↗2025-12-24

▶

📋Vendor Advisories

Red Hat

kernel: apparmor: fix a memleak in multi_transaction_new()↗2025-12-24

▶

Debian

CVE-2022-50754: linux - In the Linux kernel, the following vulnerability has been resolved: apparmor: f...↗2022

▶

🕵️Threat Intelligence

Wiz

CVE-2022-50754 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶