CVE-2022-48740

Published: Jun 20, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: selinux: fix double free of cond_list on error paths On error path from cond_read_list() and duplicate_policydb_cond_list() the cond_list_destroy() gets called a second time in caller functions, resulting in NULL pointer deref. Fix this by resetting the cond_list_len to 0 in cond_list_destroy(), making subsequent calls a noop. Also consistently reset the cond_list pointer to NULL after freeing. [PM: fix line lengths in the description]

Vendor	Product	Versions
Linux	Linux	affected `60abd3181db29ea81742106cc0ac2e27fd05b418 - < f446089a268c8fc6908488e991d28a9b936293db` affected `60abd3181db29ea81742106cc0ac2e27fd05b418 - < 70caa32e6d81f45f0702070c0e4dfe945e92fbd7` affected `60abd3181db29ea81742106cc0ac2e27fd05b418 - < 7ed9cbf7ac0d4ed86b356e1b944304ae9ee450d4` affected `60abd3181db29ea81742106cc0ac2e27fd05b418 - < 186edf7e368c40d06cf727a1ad14698ea67b74ad`
Linux	Linux	affected `5.7` unaffected `0 - < 5.7` unaffected `5.10.99 - <= 5.10.` unaffected `5.15.22 - <= 5.15.` unaffected `5.16.8 - <= 5.16.*` +1 more versions

References

https://git.kernel.org/stable/c/f446089a268c8fc6908488e991d28a9b936293db

https://git.kernel.org/stable/c/70caa32e6d81f45f0702070c0e4dfe945e92fbd7

https://git.kernel.org/stable/c/7ed9cbf7ac0d4ed86b356e1b944304ae9ee450d4

https://git.kernel.org/stable/c/186edf7e368c40d06cf727a1ad14698ea67b74ad

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-48740

Description

Affected Products

References