CVE-2022-50569
Published: Oct 22, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: xfrm: Update ipcomp_scratches with NULL when freed Currently if ipcomp_alloc_scratches() fails to allocate memory ipcomp_scratches holds obsolete address. So when we try to free the percpu scratches using ipcomp_free_scratches() it tries to vfree non existent vm area. Described below: static void * __percpu *ipcomp_alloc_scratches(void) { ... scratches = alloc_percpu(void *); if (!scratches) return NULL; ipcomp_scratches does not know about this allocation failure. Therefore holding the old obsolete address. ... } So when we free, static void ipcomp_free_scratches(void) { ... scratches = ipcomp_scratches; Assigning obsolete address from ipcomp_scratches if (!scratches) return; for_each_possible_cpu(i) vfree(*per_cpu_ptr(scratches, i)); Trying to free non existent page, causing warning: trying to vfree existent vm area. ... } Fix this breakage by updating ipcomp_scrtches with NULL when scratches is freed
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < debca61df6bc2f65e020656c9c5b878d6b38d30faffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < a39f456d62810c0efb43cead22f98d95b53e4b1aaffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 1e8abde895b3ac6a368cbdb372e8800c49e73a28affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 18373ed500f7cd53e24d9b0bd0f1c09d78dba87eaffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < be81c44242b20fc3bdcc73480ef8aaee56f5d0b6+4 more versions |
Linux | Linux | affected 2.6.12unaffected 0 - < 2.6.12unaffected 4.9.331 - <= 4.9.*unaffected 4.14.296 - <= 4.14.*unaffected 4.19.262 - <= 4.19.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now