CVE-2022-49020

Source
https://nvd.nist.gov/vuln/detail/CVE-2022-49020
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49020.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-49020
Downstream
Related
Published
2024-10-21T20:15:13Z
Modified
2025-08-09T19:01:28Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

net/9p: Fix a potential socket leak in p9socketopen

Both p9fdcreatetcp() and p9fdcreateunix() will call p9socketopen(). If the creation of p9transfd fails, p9fdcreatetcp() and p9fdcreateunix() will return an error directly instead of releasing the cscoket, which will result in a socket leak.

This patch adds sock_release() to fix the leak issue.

References

Affected packages