-

CVE-2022-50074

EPSS 0.04%
Published 18.06.2025 11:02:18
Last modified 18.06.2025 13:47:40
Source 416baaa9-dc9f-4396-8d5f-8c081f
Teams watchlist Login
Open Login

In the Linux kernel, the following vulnerability has been resolved:

apparmor: Fix memleak in aa_simple_write_to_buffer()

When copy_from_user failed, the memory is freed by kvfree. however the
management struct and data blob are allocated independently, so only
kvfree(data) cause a memleak issue here. Use aa_put_loaddata(data) to
fix this issue.

Affected products Warnungen 0 Metrics 1 CWE 0 References 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

VendorLinux

≫

Product Linux

Default Statusunaffected

Version < 6500eb3a48ac221051b1791818a1ac74744ef617

Version a6a52579e52b55448326db88bd9a5740e7c1a037

Status affected

Version < 7db182a2ebeefded86fea542fcc5d6a68bb77f58

Version a6a52579e52b55448326db88bd9a5740e7c1a037

Status affected

Version < 8aab4295582eb397a125d2788b829fa62b88dbf7

Version a6a52579e52b55448326db88bd9a5740e7c1a037

Status affected

Version < bf7ebebce2c25071c719fd8a2f1307e0c243c2d7

Version a6a52579e52b55448326db88bd9a5740e7c1a037

Status affected

Version < 6583edbf459de2e06b9759f264c0ae27e452b97a

Version a6a52579e52b55448326db88bd9a5740e7c1a037

Status affected

Version < 417ea9fe972d2654a268ad66e89c8fcae67017c3

Version a6a52579e52b55448326db88bd9a5740e7c1a037

Status affected

VendorLinux

≫

Product Linux

Default Statusaffected

Version 4.17

Status affected

Version < 4.17

Version 0

Status unaffected

Version <= 4.19.*

Version 4.19.256

Status unaffected

Version <= 5.4.*

Version 5.4.211

Status unaffected

Version <= 5.10.*

Version 5.10.138

Status unaffected

Version <= 5.15.*

Version 5.15.63

Status unaffected

Version <= 5.19.*

Version 5.19.4

Status unaffected

Version <= *

Version 6.0

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.04%	0.094

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string

https://git.kernel.org/stable/c/6500eb3a48ac221051b1791818a1ac74744ef617

https://git.kernel.org/stable/c/7db182a2ebeefded86fea542fcc5d6a68bb77f58

https://git.kernel.org/stable/c/8aab4295582eb397a125d2788b829fa62b88dbf7

https://git.kernel.org/stable/c/bf7ebebce2c25071c719fd8a2f1307e0c243c2d7

https://git.kernel.org/stable/c/6583edbf459de2e06b9759f264c0ae27e452b97a

https://git.kernel.org/stable/c/417ea9fe972d2654a268ad66e89c8fcae67017c3

https://nvd.nist.gov/vuln/detail/CVE-2022-50074

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-50074

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-50074

EUVD