CVE-2022-49837

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to memory leaks in the check func call function of the Linux kernel's bpf module. The problem occurs when the callee is not released in abnormal scenarios, leading to memory leaks. The root cause is identified in the prepare func exit function, where the callee is not released after state->curframe--. To fix this, it is suggested to move state->curframe-- to the end of the function, where the callee is freed and the frame[] pointer is reset to NULL. A similar problem is also found in the check func call function, where the callee should be released by free func state() in abnormal scenarios before state->curframe++.

Recommendations To resolve the issue, move state->curframe-- to the very bottom of the prepare func exit function, right when the callee is freed and the frame[] pointer is reset to NULL. Additionally, in the check func call function, release the callee by calling free func state() in the abnormal scenario before state->curframe++. At the moment, there is no information about a newer version that contains a fix for this vulnerability.