File Interface Vulnerability in Linux Kernel by The Linux Foundation
CVE-2022-49705

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 26 February 2025

Summary

A vulnerability in the Linux kernel's 9p filesystem implementation can lead to a file identifier (fid) reference count leak during the atomic open process. This occurs when the system fails midway through the open operation, leaving the directory fid unreleased. The issue has been identified and resolved to prevent further fid leaks, ensuring improved stability and security in file operations within affected Linux environments.

Affected Version(s)

Linux 6636b6dcc3db2258cd0585b8078c1c225c4b6dde < 22832ac3eb5be3f7168816a76b64c1284e12eb3c

Linux 6636b6dcc3db2258cd0585b8078c1c225c4b6dde < 8bc5412ba1a45edfd1e451874c483c26a097af2b

Linux 6636b6dcc3db2258cd0585b8078c1c225c4b6dde

References

https://git.kernel.org/stable/c/22832ac3eb5be3f7168816a76...

https://git.kernel.org/stable/c/8bc5412ba1a45edfd1e451874...

https://git.kernel.org/stable/c/beca774fc51a9ba8abbc869cf...

Timeline

Vulnerability published
Feb 26, 2025
Vulnerability Reserved
Feb 26, 2025