RefCount Leak in Linux Kernel v9fs Protocol

CVE-2022-49704

Summary

The Linux kernel was found to contain a vulnerability in the v9fs protocol that resulted in a refcount leak. This issue occurred due to the protocol version check being performed after the file identifier (fid) had been obtained, leading to potential unintended behavior. By moving the version check to occur earlier in the process, this vulnerability has been effectively mitigated, enhancing the overall security of the kernel and its implementations utilizing the v9fs protocol.

References