CVE-2022-49183

Published: Feb 26, 2025

Modified: Jun 1, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: net/sched: act_ct: fix ref leak when switching zones When switching zones or network namespaces without doing a ct clear in between, it is now leaking a reference to the old ct entry. That's because tcf_ct_skb_nfct_cached() returns false and tcf_ct_flow_table_lookup() may simply overwrite it. The fix is to, as the ct entry is not reusable, free it already at tcf_ct_skb_nfct_cached().

Vendor	Product	Versions
Linux	Linux	affected `0fc1847359964e95e521cf2bb2b10f8e33dd0970 - < 9222a08be539cbb7a8e0d46cbc7ab9e4db273eb8` affected `a95ea90deb3071c1ded77a05e91cfebc5238d908 - < bcbf4e5c3b5b373cd61528392dd1ec8e9c0fd33d` affected `e9408de00e5ecd0dbe91cf061c7da23711c4febb - < 4bb42d73def9411e5cad885b9811987d72431df1` affected `2f131de361f6d0eaff17db26efdb844c178432f8 - < b24793a37d91aacad7cb9893b226a7924a89636a` affected `2f131de361f6d0eaff17db26efdb844c178432f8 - < bcb74e132a76ce0502bb33d5b65533a4ed72d159` +3 more versions
Linux	Linux	affected `5.17` unaffected `0 - < 5.17` unaffected `5.10.258 - <= 5.10.` unaffected `5.15.33 - <= 5.15.` unaffected `5.16.19 - <= 5.16.*` +2 more versions

References

https://git.kernel.org/stable/c/9222a08be539cbb7a8e0d46cbc7ab9e4db273eb8

https://git.kernel.org/stable/c/bcbf4e5c3b5b373cd61528392dd1ec8e9c0fd33d

https://git.kernel.org/stable/c/4bb42d73def9411e5cad885b9811987d72431df1

https://git.kernel.org/stable/c/b24793a37d91aacad7cb9893b226a7924a89636a

https://git.kernel.org/stable/c/bcb74e132a76ce0502bb33d5b65533a4ed72d159

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-49183

Description

Affected Products

References