CVE-2022-50466
- Source
- https://cve.org/CVERecord?id=CVE-2022-50466
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50466.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-50466
- Downstream
- Related
- Published
- 2025-10-01T11:45:37.376Z
- Modified
- 2026-04-02T08:28:31.825324Z
- Summary
- fs/binfmt_elf: Fix memory leak in load_elf_binary()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
fs/binfmtelf: Fix memory leak in loadelf_binary()
There is a memory leak reported by kmemleak:
unreferenced object 0xffff88817104ef80 (size 224): comm "xfs_admin", pid 47165, jiffies 4298708825 (age 1333.476s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 60 a8 b3 00 81 88 ff ff a8 10 5a 00 81 88 ff ff `.........Z..... backtrace: [<ffffffff819171e1>] __allocfile+0x21/0x250 [<ffffffff81918061>] allocemptyfile+0x41/0xf0 [<ffffffff81948cda>] pathopenat+0xea/0x3d30 [<ffffffff8194ec89>] dofilpopen+0x1b9/0x290 [<ffffffff8192660e>] doopenexecat+0xce/0x5b0 [<ffffffff81926b17>] openexec+0x27/0x50 [<ffffffff81a69250>] loadelfbinary+0x510/0x3ed0 [<ffffffff81927759>] bprmexecve+0x599/0x1240 [<ffffffff8192a997>] doexecveatcommon.isra.0+0x4c7/0x680 [<ffffffff8192b078>] __x64sysexecve+0x88/0xb0 [<ffffffff83bbf0a5>] dosyscall64+0x35/0x80
If "interpelfex" fails to allocate memory in loadelfbinary(), the program will take the "outfreeph" error handing path, resulting in "interpreter" file resource is not released.
Fix it by adding an error handing path "outfreefile", which will release the file resource when "interpelfex" failed to allocate memory.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50466.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/265b6fb780f57d10449a40e94219b28fa52479cc
- https://git.kernel.org/stable/c/594d2a14f2168c09b13b114c3d457aa939403e52
- https://git.kernel.org/stable/c/706215300411d48db6b51a5832b872632a84bbc1
- https://git.kernel.org/stable/c/acd9b4914f1c5928c7ae8ebc623d6291eb1a573a
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50466.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-50466
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0693ffebcfe5ac7b31f63ad54587007f7d96fb7bFixed706215300411d48db6b51a5832b872632a84bbc1Fixed265b6fb780f57d10449a40e94219b28fa52479ccFixedacd9b4914f1c5928c7ae8ebc623d6291eb1a573aFixed594d2a14f2168c09b13b114c3d457aa939403e52