CVE-2022-50007
Published: Jun 18, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: xfrm: fix refcount leak in __xfrm_policy_check() The issue happens on an error path in __xfrm_policy_check(). When the fetching process of the object `pols[1]` fails, the function simply returns 0, forgetting to decrement the reference count of `pols[0]`, which is incremented earlier by either xfrm_sk_policy_lookup() or xfrm_policy_lookup(). This may result in memory leaks. Fix it by decreasing the reference count of `pols[0]` in that path.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 134b0fc544ba062498451611cb6f3e4454221b3d - < 18e6b6e2555c93f5ca09f2b85ef1fa025c8acceaaffected 134b0fc544ba062498451611cb6f3e4454221b3d - < 8f94b933103ee1bda119543369cc18a1be5536dbaffected 134b0fc544ba062498451611cb6f3e4454221b3d - < 0769491a8acd3e85ca4c3f65080eac2c824262dfaffected 134b0fc544ba062498451611cb6f3e4454221b3d - < 63da7a2bbf3f28094920e0b8a17d2571a9bd842daffected 134b0fc544ba062498451611cb6f3e4454221b3d - < 1305d7d4f35ca6f214a2d23b075aa6a924cff3be+3 more versions |
Linux | Linux | affected 2.6.19unaffected 0 - < 2.6.19unaffected 4.9.327 - <= 4.9.*unaffected 4.14.292 - <= 4.14.*unaffected 4.19.257 - <= 4.19.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now