PT-2025-18518 · Linux+3 · Linux Kernel+3
Published
2025-05-01
·
Updated
2026-03-14
·
CVE-2022-49801
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
A memory leak issue has been identified in the Linux kernel, specifically in the tracing read pipe() function. The kmemleak tool reports an unreferenced object, indicating a memory leakage problem. The issue occurs because the iter->fmt variable is allocated in the tracing read pipe() function but not freed, leading to a memory leak. The backtrace provided shows the sequence of function calls that lead to this issue.
Recommendations
To resolve this issue, add a free operation in the tracing release pipe() function to release the allocated memory. This will prevent the memory leak and fix the vulnerability.
Note: Since the affected versions are not specified, it is recommended to apply this fix to all versions of the Linux kernel that are currently in use.
Exploit
Fix
Memory Leak
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Astra Linux
Debian
Linux Kernel
Suse