CVE-2022-50838

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw related to TCP socket handling. Specifically, the sk error queue is not properly purged during socket closure, potentially leading to memory leaks and system instability. This issue arises when SOF TIMESTAMPING TX ACK is enabled on a socket, and the application utilizes MSG ZEROCOPY. The incomplete purging of the error queue can elevate the socket refcount indefinitely, causing TCP sockets to remain alive even after the application closes them. This can be exploited to exhaust kernel memory and freeze the host system. The issue involves the functions skb tstamp tx(), sock zerocopy alloc(), and tcp close().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.