CVE-2022-49801
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-49801
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49801.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-49801
- Downstream
- Related
- Published
- 2025-05-01T14:09:29Z
- Modified
- 2025-10-15T00:21:23.526841Z
- Summary
- tracing: Fix memory leak in tracing_read_pipe()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
tracing: Fix memory leak in tracingreadpipe()
kmemleak reports this issue:
unreferenced object 0xffff888105a18900 (size 128): comm "testprogs", pid 18933, jiffies 4336275356 (age 22801.766s) hex dump (first 32 bytes): 25 73 00 90 81 88 ff ff 26 05 00 00 42 01 58 04 %s......&...B.X. 03 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000560143a1>] _kmallocnodetrackcaller+0x4a/0x140 [<000000006af00822>] krealloc+0x8d/0xf0 [<00000000c309be6a>] traceiterexpandformat+0x99/0x150 [<000000005a53bdb6>] tracecheckvprintf+0x1e0/0x11d0 [<0000000065629d9d>] traceeventprintf+0xb6/0xf0 [<000000009a690dc7>] tracerawoutputbpftraceprintk+0x89/0xc0 [<00000000d22db172>] printtraceline+0x73c/0x1480 [<00000000cdba76ba>] tracingreadpipe+0x45c/0x9f0 [<0000000015b58459>] vfsread+0x17b/0x7c0 [<000000004aeee8ed>] ksysread+0xed/0x1c0 [<0000000063d3d898>] dosyscall64+0x3b/0x90 [<00000000a06dda7f>] entrySYSCALL64after_hwframe+0x63/0xcd
iter->fmt alloced in tracingreadpipe() -> .. ->traceiterexpandformat(), but not freed, to fix, add free in tracingrelease_pipe()
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedefbbdaa22bb78761bff8dfdde027ad04bedd47ceFixed2c21ee020ce43d744ecd7f3e9bddfcaafef270ce
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedefbbdaa22bb78761bff8dfdde027ad04bedd47ceFixeda7d3f8f33c113478737bc61bb32ec5f9a987da7d
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedefbbdaa22bb78761bff8dfdde027ad04bedd47ceFixed649e72070cbbb8600eb823833e4748f5a0815116
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced840ce9cfc86f89c335625ec297acc0375f82e19b
Affected versions
v5.*
v5.10.190
v5.10.191
v5.10.192
v5.10.193
v5.10.194
v5.10.195
v5.10.196
v5.10.197
v5.10.198
v5.10.199
v5.10.200
v5.10.201
v5.10.202
v5.10.203
v5.10.204
v5.10.205
v5.10.206
v5.10.207
v5.10.208
v5.10.209
v5.10.210
v5.10.211
v5.10.212
v5.10.213
v5.10.214
v5.10.215
v5.10.216
v5.10.217
v5.10.218
v5.10.219
v5.10.220
v5.10.221
v5.10.222
v5.10.223
v5.10.224
v5.10.225
v5.10.226
v5.10.227
v5.10.228
v5.10.229
v5.10.230
v5.10.231
v5.10.232
v5.10.233
v5.10.234
v5.10.235
v5.10.236
v5.10.237
v5.10.238
v5.10.239
v5.10.240
v5.10.241
v5.10.242
v5.10.243
v5.10.244
v5.10.245
v5.11
v5.11-rc6
v5.11-rc7
v5.12
v5.12-rc1
v5.12-rc1-dontuse
v5.12-rc2
v5.12-rc3
v5.12-rc4
v5.12-rc5
v5.12-rc6
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.58
v5.15.59
v5.15.6
v5.15.60
v5.15.61
v5.15.62
v5.15.63
v5.15.64
v5.15.65
v5.15.66
v5.15.67
v5.15.68
v5.15.69
v5.15.7
v5.15.70
v5.15.71
v5.15.72
v5.15.73
v5.15.74
v5.15.75
v5.15.76
v5.15.77
v5.15.78
v5.15.79
v5.15.8
v5.15.9
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.0.1
v6.0.2
v6.0.3
v6.0.4
v6.0.5
v6.0.6
v6.0.7
v6.0.8
v6.0.9
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
Database specific
{
"vanir_signatures": [
{
"digest": {
"line_hashes": [
"221988766483377355871402681417392823565",
"144532876928966918828433577017737991611",
"84325134084954301125264173946125735811",
"340189609214606956100128746569032088356"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2c21ee020ce43d744ecd7f3e9bddfcaafef270ce",
"signature_type": "Line",
"target": {
"file": "kernel/trace/trace.c"
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49801-1d2e0739"
},
{
"digest": {
"line_hashes": [
"221988766483377355871402681417392823565",
"144532876928966918828433577017737991611",
"84325134084954301125264173946125735811",
"340189609214606956100128746569032088356"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@649e72070cbbb8600eb823833e4748f5a0815116",
"signature_type": "Line",
"target": {
"file": "kernel/trace/trace.c"
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49801-51ef73c6"
},
{
"digest": {
"length": 402.0,
"function_hash": "237959723182111370596391057483452838550"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@649e72070cbbb8600eb823833e4748f5a0815116",
"signature_type": "Function",
"target": {
"function": "tracing_release_pipe",
"file": "kernel/trace/trace.c"
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49801-8f919ef1"
},
{
"digest": {
"line_hashes": [
"221988766483377355871402681417392823565",
"144532876928966918828433577017737991611",
"84325134084954301125264173946125735811",
"340189609214606956100128746569032088356"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a7d3f8f33c113478737bc61bb32ec5f9a987da7d",
"signature_type": "Line",
"target": {
"file": "kernel/trace/trace.c"
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49801-ccb789da"
},
{
"digest": {
"length": 402.0,
"function_hash": "237959723182111370596391057483452838550"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2c21ee020ce43d744ecd7f3e9bddfcaafef270ce",
"signature_type": "Function",
"target": {
"function": "tracing_release_pipe",
"file": "kernel/trace/trace.c"
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49801-d2f430a5"
},
{
"digest": {
"length": 402.0,
"function_hash": "237959723182111370596391057483452838550"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a7d3f8f33c113478737bc61bb32ec5f9a987da7d",
"signature_type": "Function",
"target": {
"function": "tracing_release_pipe",
"file": "kernel/trace/trace.c"
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49801-e8d175ae"
}
]
}