CVE-2022-50751

EUVD-2022-55810

24.12.2025, 13:16

In the Linux kernel, the following vulnerability has been resolved:

configfs: fix possible memory leak in configfs_create_dir()

kmemleak reported memory leaks in configfs_create_dir():

unreferenced object 0xffff888009f6af00 (size 192):
  comm "modprobe", pid 3777, jiffies 4295537735 (age 233.784s)
  backtrace:
    kmem_cache_alloc (mm/slub.c:3250 mm/slub.c:3256 mm/slub.c:3263 mm/slub.c:3273)
    new_fragment (./include/linux/slab.h:600 fs/configfs/dir.c:163)
    configfs_register_subsystem (fs/configfs/dir.c:1857)
    basic_write (drivers/hwtracing/stm/p_basic.c:14) stm_p_basic
    do_one_initcall (init/main.c:1296)
    do_init_module (kernel/module/main.c:2455)
    ...

unreferenced object 0xffff888003ba7180 (size 96):
  comm "modprobe", pid 3777, jiffies 4295537735 (age 233.784s)
  backtrace:
    kmem_cache_alloc (mm/slub.c:3250 mm/slub.c:3256 mm/slub.c:3263 mm/slub.c:3273)
    configfs_new_dirent (./include/linux/slab.h:723 fs/configfs/dir.c:194)
    configfs_make_dirent (fs/configfs/dir.c:248)
    configfs_create_dir (fs/configfs/dir.c:296)
    configfs_attach_group.isra.28 (fs/configfs/dir.c:816 fs/configfs/dir.c:852)
    configfs_register_subsystem (fs/configfs/dir.c:1881)
    basic_write (drivers/hwtracing/stm/p_basic.c:14) stm_p_basic
    do_one_initcall (init/main.c:1296)
    do_init_module (kernel/module/main.c:2455)
    ...

This is because the refcount is not correct in configfs_make_dirent().
For normal stage, the refcount is changing as:

configfs_register_subsystem()
  configfs_create_dir()
    configfs_make_dirent()
      configfs_new_dirent() # set s_count = 1
      dentry->d_fsdata = configfs_get(sd); # s_count = 2
...
configfs_unregister_subsystem()
  configfs_remove_dir()
    remove_dir()
      configfs_remove_dirent() # s_count = 1
    dput() ...
      *dentry_unlink_inode()*
        configfs_d_iput() # s_count = 0, release

However, if we failed in configfs_create():

configfs_register_subsystem()
  configfs_create_dir()
    configfs_make_dirent() # s_count = 2
    ...
    configfs_create() # fail
    ->out_remove:
    configfs_remove_dirent(dentry)
      configfs_put(sd) # s_count = 1
      return PTR_ERR(inode);

There is no inode in the error path, so the configfs_d_iput() is lost
and makes sd and fragment memory leaked.

To fix this, when we failed in configfs_create(), manually call
configfs_put(sd) to keep the refcount correct.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	UNKNOWN				---

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: 10%

Debian Releases

Debian Product

Codename

linux

bookworm	6.1.148-1 fixed
bookworm (security)	6.1.158-1 fixed
bullseye	5.10.223-1 fixed
bullseye (security)	5.10.247-1 fixed
forky	6.17.12-1 fixed
sid	6.17.13-1 fixed
trixie	6.12.57-1 fixed
trixie (security)	6.12.48-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

linux

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
noble	needs-triage
plucky	needs-triage
questing	needs-triage
trusty	needs-triage
xenial	needs-triage

linux-hwe

bionic	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
xenial	needs-triage

linux-hwe-5.4

bionic	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-hwe-5.8

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-hwe-5.11

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-hwe-5.13

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-hwe-5.15

focal	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-hwe-5.19

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-hwe-6.2

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-hwe-6.5

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-hwe-6.8

jammy	needs-triage
noble	dne
plucky	dne
questing	dne

linux-hwe-6.11

jammy	dne
noble	ignored
plucky	dne
questing	dne

linux-hwe-6.14

jammy	dne
noble	needs-triage
plucky	dne
questing	dne

linux-hwe-edge

bionic	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
xenial	ignored

linux-lts-xenial

jammy	dne
noble	dne
plucky	dne
questing	dne
trusty	needs-triage

linux-kvm

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
noble	dne
plucky	dne
questing	dne
xenial	needs-triage

linux-allwinner-5.19

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-aws

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
noble	needs-triage
plucky	needs-triage
questing	needs-triage
trusty	needs-triage
xenial	needs-triage

linux-aws-5.0

bionic	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-aws-5.3

bionic	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-aws-5.4

bionic	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-aws-5.8

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-aws-5.11

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-aws-5.13

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-aws-5.15

focal	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-aws-5.19

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-aws-6.2

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-aws-6.5

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-aws-6.8

jammy	needs-triage
noble	dne
plucky	dne
questing	dne

linux-aws-6.14

jammy	dne
noble	needs-triage
plucky	dne
questing	dne

linux-aws-hwe

jammy	dne
noble	dne
plucky	dne
questing	dne
xenial	needs-triage

linux-azure

bionic	ignored
focal	needs-triage
jammy	needs-triage
noble	needs-triage
plucky	needs-triage
questing	needs-triage
trusty	needs-triage
xenial	needs-triage

linux-azure-4.15

bionic	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-azure-5.3

bionic	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-azure-5.4

bionic	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-azure-5.8

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-azure-5.11

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-azure-5.13

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-azure-5.15

focal	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-azure-5.19

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-azure-6.2

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-azure-6.5

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-azure-6.8

jammy	needs-triage
noble	dne
plucky	dne
questing	dne

linux-azure-6.11

jammy	dne
noble	ignored
plucky	dne
questing	dne

linux-azure-6.14

jammy	dne
noble	needs-triage
plucky	dne
questing	dne

linux-azure-fde

focal	ignored
jammy	needs-triage
noble	needs-triage
plucky	needs-triage
questing	dne

linux-azure-fde-5.15

focal	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-azure-fde-5.19

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-azure-fde-6.2

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-azure-fde-6.8

jammy	needs-triage
noble	dne
plucky	dne
questing	dne

linux-azure-fde-6.14

jammy	dne
noble	needs-triage
plucky	dne
questing	dne

linux-azure-nvidia

jammy	dne
noble	needs-triage
plucky	dne
questing	dne

linux-azure-nvidia-6.14

jammy	dne
noble	needs-triage
plucky	dne
questing	dne

linux-bluefield

focal	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-azure-edge

bionic	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-fips

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
noble	needs-triage
plucky	dne
questing	dne
xenial	needs-triage

linux-aws-fips

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
noble	needs-triage
plucky	dne
questing	dne

linux-azure-fips

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
noble	needs-triage
plucky	dne
questing	dne

linux-gcp-fips

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
noble	needs-triage
plucky	dne
questing	dne

linux-gcp

bionic	ignored
focal	needs-triage
jammy	needs-triage
noble	needs-triage
plucky	needs-triage
questing	needs-triage
xenial	needs-triage

linux-gcp-4.15

bionic	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-gcp-5.3

bionic	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-gcp-5.4

bionic	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-gcp-5.8

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-gcp-5.11

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-gcp-5.13

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-gcp-5.15

focal	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-gcp-5.19

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-gcp-6.2

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-gcp-6.5

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-gcp-6.8

jammy	needs-triage
noble	dne
plucky	dne
questing	dne

linux-gcp-6.11

jammy	dne
noble	ignored
plucky	dne
questing	dne

linux-gcp-6.14

jammy	dne
noble	needs-triage
plucky	dne
questing	dne

linux-gke

focal	ignored
jammy	needs-triage
noble	needs-triage
plucky	dne
questing	dne

linux-gke-4.15

bionic	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-gke-5.4

bionic	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-gke-5.15

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-gkeop

focal	ignored
jammy	needs-triage
noble	needs-triage
plucky	dne
questing	dne

linux-gkeop-5.4

bionic	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-gkeop-5.15

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-ibm

focal	needs-triage
jammy	needs-triage
noble	needs-triage
plucky	dne
questing	dne

linux-ibm-5.4

bionic	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-ibm-5.15

focal	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-ibm-6.8

jammy	needs-triage
noble	dne
plucky	dne
questing	dne

linux-intel-5.13

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-intel-iotg

jammy	needs-triage
noble	dne
plucky	dne
questing	dne

linux-intel-iotg-5.15

focal	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-iot

focal	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-intel-iot-realtime

jammy	needs-triage
noble	dne
plucky	dne
questing	dne

linux-lowlatency

jammy	needs-triage
noble	needs-triage
plucky	dne
questing	dne

linux-lowlatency-hwe-5.15

focal	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-lowlatency-hwe-5.19

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-lowlatency-hwe-6.2

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-lowlatency-hwe-6.5

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-lowlatency-hwe-6.8

jammy	needs-triage
noble	dne
plucky	dne
questing	dne

linux-lowlatency-hwe-6.11

jammy	dne
noble	ignored
plucky	dne
questing	dne

linux-nvidia

jammy	needs-triage
noble	needs-triage
plucky	dne
questing	dne

linux-nvidia-6.2

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-nvidia-6.5

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-nvidia-6.8

jammy	needs-triage
noble	dne
plucky	dne
questing	dne

linux-nvidia-6.11

jammy	dne
noble	ignored
plucky	dne
questing	dne

linux-nvidia-lowlatency

jammy	dne
noble	needs-triage
plucky	dne
questing	dne

linux-nvidia-tegra

jammy	needs-triage
noble	needs-triage
plucky	dne
questing	dne

linux-nvidia-tegra-5.15

focal	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-nvidia-tegra-igx

jammy	needs-triage
noble	dne
plucky	dne
questing	dne

linux-oracle

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
noble	needs-triage
plucky	needs-triage
questing	needs-triage
xenial	needs-triage

linux-oracle-5.0

bionic	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-oracle-5.3

bionic	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-oracle-5.4

bionic	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-oracle-5.8

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-oracle-5.11

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-oracle-5.13

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-oracle-5.15

focal	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-oracle-6.5

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-oracle-6.8

jammy	needs-triage
noble	dne
plucky	dne
questing	dne

linux-oracle-6.14

jammy	dne
noble	needs-triage
plucky	dne
questing	dne

linux-oem

bionic	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-oem-5.6

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-oem-5.10

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-oem-5.13

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-oem-5.14

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-oem-5.17

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-oem-6.0

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-oem-6.1

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-oem-6.5

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-oem-6.8

jammy	dne
noble	ignored
plucky	dne
questing	dne

linux-oem-6.11

jammy	dne
noble	ignored
plucky	dne
questing	dne

linux-oem-6.14

jammy	dne
noble	needs-triage
plucky	dne
questing	dne

linux-oem-6.17

jammy	dne
noble	needs-triage
plucky	dne
questing	dne

linux-raspi

focal	needs-triage
jammy	needs-triage
noble	needs-triage
plucky	needs-triage
questing	needs-triage

linux-raspi2

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-raspi-5.4

bionic	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-raspi-realtime

jammy	dne
noble	needs-triage
plucky	dne
questing	dne

linux-realtime

jammy	needs-triage
noble	needs-triage
plucky	needs-triage
questing	needs-triage

linux-realtime-6.8

jammy	needs-triage
noble	dne
plucky	dne
questing	dne

linux-realtime-6.14

jammy	dne
noble	needs-triage
plucky	dne
questing	dne

linux-riscv

focal	ignored
jammy	ignored
noble	ignored
plucky	needs-triage
questing	needs-triage

linux-riscv-5.8

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-riscv-5.11

focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-riscv-5.15

focal	needs-triage
jammy	dne
noble	dne
plucky	dne
questing	dne

linux-riscv-5.19

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-riscv-6.5

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-riscv-6.8

jammy	needs-triage
noble	dne
plucky	dne
questing	dne

linux-riscv-6.14

jammy	dne
noble	ignored
plucky	dne
questing	dne

linux-starfive-5.19

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-starfive-6.2

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-starfive-6.5

jammy	ignored
noble	dne
plucky	dne
questing	dne

linux-xilinx

jammy	dne
noble	needs-triage
plucky	needs-triage
questing	dne

linux-xilinx-zynqmp

focal	needs-triage
jammy	needs-triage
noble	dne
plucky	dne
questing	dne

Vulnerability Media Exposure

[GERMAN] Linux Kernel: Mehrere Schwachstellen
Ein Angreifer kann mehrere Schwachstellen im Linux-Kernel ausnutzen, um nicht näher spezifizierte Angriffe durchzuführen, die möglicherweise zu einer Denial-of-Service- Bedingung führen oder eine Speicherbeschädigung verursachen können.
Published: 2025-12-28T23:00:00+00:00

References

https://git.kernel.org/stable/c/07f82dca112262b169bec0001378126439cab776

https://git.kernel.org/stable/c/74ac7c9ee2d486c501e7864c903f5098fc477acd

https://git.kernel.org/stable/c/8bc77754224a2c8581727ffe2e958119b4e27c8f

https://git.kernel.org/stable/c/90c38f57a821499391526b15cc944c265bd24e48

https://git.kernel.org/stable/c/c65234b283a65cfbfc94619655e820a5e55199eb

https://git.kernel.org/stable/c/c72eb6e6e49a71f7598740786568fafdd013a227