CVE-2022-49381

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak issue has been identified in the Linux kernel, specifically in the jffs2 file system. The leak occurs when jffs2 iget() or d make root() in jffs2 do fill super() returns an error, causing unreferenced objects to remain in memory. This issue is resolved by calling jffs2 sum exit() to release the allocated resources.

Recommendations To resolve this issue, ensure that jffs2 sum exit() is called to release resources allocated in jffs2 sum init() when an error occurs in jffs2 do fill super(). As a temporary workaround, consider implementing error handling to release resources properly in case of errors during the jffs2 do fill super() function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.