CVE-2022-50765

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a memory leak in the kexec functionality related to the ELF header buffer. The issue is identified by the kmemleak detector and occurs during the elf kexec load() function when a buffer is allocated using vzalloc() to store ELF headers. This buffer is not freed under certain conditions, such as when the kdump kernel is reloaded or unloaded, or when the image's ELF header is successfully set but loading the kdump kernel fails. The fix involves freeing the buffer in the arch kimage file post load cleanup() function. The backtrace includes function calls such as kmemleak vmalloc, vmalloc node range, vmalloc node, vzalloc, crash prepare elf64 headers, elf kexec load, kexec image load default, and sys kexec file load.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.