CVE-2022-50860

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak was identified and resolved in the Linux kernel’s AppArmor subsystem within the alloc ns() function. The issue stemmed from changes introduced by commit a1bd627b46d1, which involved sharing a profile name on replacement. This resulted in the hname member of the aa policy structure not being a valid slab object, preventing proper freeing by kfree sensitive(). The fix involves utilizing aa policy destroy() to correctly handle the destruction of the policy.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.