CVE-2022-50661

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contained a flaw in the seccomp implementation where memory leaks occurred in the do seccomp() function. A syzbot instance identified unreferenced objects, including seccomp filter structures and associated objects, that were not being freed properly. This issue was triggered when a signal was sent to a process during a clone operation, specifically before the fatal signal pending() test in copy process(). The fix involved moving the copy seccomp() function to a non-failure path to ensure proper filter reference counting and prevent memory leaks. The backtrace indicates the issue involves functions such as do seccomp(), do syscall 64(), bpf prog alloc(), and bpf prog create from user().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.