CVE-2022-50855

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel related to Berkeley Packet Filter (BPF) programs. Specifically, the issue involves a failure to properly decrement the reference count of a Loadable Security Module (LSM) program after a failed attachment attempt to a control group (cgroup). This results in the LSM program remaining active beyond its intended lifecycle, leading to a resource leak. The vulnerability was addressed by ensuring the reference count is decremented even when the attachment validation fails.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.