5.5

CVE-2022-50107

cifs: Fix memory leak when using fscache

In the Linux kernel, the following vulnerability has been resolved:

cifs: Fix memory leak when using fscache

If we hit the 'index == next_cached' case, we leak a refcount on the
struct page.  Fix this by using readahead_folio() which takes care of
the refcount for you.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.17.1 < 5.18.18
LinuxLinux Kernel Version >= 5.19 < 5.19.2
LinuxLinux Kernel Version5.17 Update-
LinuxLinux Kernel Version5.17 Updaterc3
LinuxLinux Kernel Version5.17 Updaterc4
LinuxLinux Kernel Version5.17 Updaterc5
LinuxLinux Kernel Version5.17 Updaterc6
LinuxLinux Kernel Version5.17 Updaterc7
LinuxLinux Kernel Version5.17 Updaterc8
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.16% 0.053
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/7105b4047481bc2950fb767cff328d8b75292c0f
Patch
https://git.kernel.org/stable/c/ae497726cd090673a4d20ac725ccc2de8067a7a5
Patch
https://git.kernel.org/stable/c/c6f62f81b488d00afaa86bae26c6ce9ab12c709e
Patch