CVE-2022-49020

EUVD-2022-53904
In the Linux kernel, the following vulnerability has been resolved:

net/9p: Fix a potential socket leak in p9_socket_open

Both p9_fd_create_tcp() and p9_fd_create_unix() will call
p9_socket_open(). If the creation of p9_trans_fd fails,
p9_fd_create_tcp() and p9_fd_create_unix() will return an
error directly instead of releasing the cscoket, which will
result in a socket leak.

This patch adds sock_release() to fix the leak issue.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 2%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
2.6.33 ≤
𝑥
< 4.9.335
linuxlinux_kernel
4.10 ≤
𝑥
< 4.14.301
linuxlinux_kernel
4.15 ≤
𝑥
< 4.19.268
linuxlinux_kernel
4.20 ≤
𝑥
< 5.4.226
linuxlinux_kernel
5.5 ≤
𝑥
< 5.10.158
linuxlinux_kernel
5.11 ≤
𝑥
< 5.15.82
linuxlinux_kernel
5.16 ≤
𝑥
< 6.0.12
linuxlinux_kernel
6.1:rc1
linuxlinux_kernel
6.1:rc2
linuxlinux_kernel
6.1:rc3
linuxlinux_kernel
6.1:rc4
linuxlinux_kernel
6.1:rc5
linuxlinux_kernel
6.1:rc6
linuxlinux_kernel
6.1:rc7
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.106-3
fixed
bookworm (security)
6.1.112-1
fixed
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.226-1
fixed
sid
6.11.6-1
fixed
trixie
6.11.5-1
fixed
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
cluster-md-kmp-default
suse enterprise server 12 SP5
4.12.14-122.234.1
fixed
dlm-kmp-default
suse enterprise server 12 SP5
4.12.14-122.234.1
fixed
gfs2-kmp-default
suse enterprise server 12 SP5
4.12.14-122.234.1
fixed
kernel-64kb
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-azure
suse enterprise sap 15 SP5
5.14.21-150500.33.72.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.33.72.1
fixed
kernel-default
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 12 SP5
4.12.14-122.234.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-default-base
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1.150500.6.39.4
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1.150500.6.39.4
fixed
suse enterprise server 12 SP5
4.12.14-122.234.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1.150500.6.39.4
fixed
kernel-default-man
suse enterprise server 12 SP5
4.12.14-122.234.1
fixed
kernel-docs
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-macros
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 12 SP5
4.12.14-122.234.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-obs-build
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-source
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 12 SP5
4.12.14-122.234.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-source-azure
suse enterprise sap 15 SP5
5.14.21-150500.33.72.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.33.72.1
fixed
kernel-syms
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 12 SP5
4.12.14-122.234.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-syms-azure
suse enterprise sap 15 SP5
5.14.21-150500.33.72.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.33.72.1
fixed
kernel-zfcpdump
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
ocfs2-kmp-default
suse enterprise server 12 SP5
4.12.14-122.234.1
fixed
Common Weakness Enumeration
References
https://git.kernel.org/stable/c/0396227f4daf4792a6a8aaa3b7771dc25c4cd443
https://git.kernel.org/stable/c/2d24d91b9f44620824fc37b766f7cae00ca32748
https://git.kernel.org/stable/c/8782b32ef867de7981bbe9e86ecb90e92e8780bd
https://git.kernel.org/stable/c/8b14bd0b500aec1458b51cb621c8e5fab3304260
https://git.kernel.org/stable/c/aa08323fe18cb7cf95317ffa2d54ca1de8e74ebd
https://git.kernel.org/stable/c/dcc14cfd7debe11b825cb077e75d91d2575b4cb8
https://git.kernel.org/stable/c/ded893965b895b2dccd3d1436d8d3daffa23ea64
https://git.kernel.org/stable/c/e01c1542379fb395e7da53706df598f38905dfbf