In the Linux kernel, the following vulnerability has been resolved:
ext4: fix memory leak in parse_apply_sb_mount_options()
If processing the on-disk mount options fails after any memory was
allocated in the ext4_fs_context, e.g. s_qf_names, then this memory is
leaked.  Fix this by calling ext4_fc_free() instead of kfree() directly.
Reproducer:
    mkfs.ext4 -F /dev/vdc
    tune2fs /dev/vdc -E mount_opts=usrjquota=file
    echo clear > /sys/kernel/debug/kmemleak
    mount /dev/vdc /vdc
    echo scan > /sys/kernel/debug/kmemleak
    sleep 5
    echo scan > /sys/kernel/debug/kmemleak
    cat /sys/kernel/debug/kmemleak
                
            References
                    Configurations
                    Configuration 1 (hide)
| 
 | 
History
                    17 Apr 2025, 20:29
| Type | Values Removed | Values Added | 
|---|---|---|
| CWE | CWE-401 | |
| CVSS | v2 : v3 : | v2 : unknown v3 : 5.5 | 
| First Time | Linux linux Kernel Linux | |
| CPE | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | |
| Summary | 
 | |
| References | () https://git.kernel.org/stable/c/9ea3e6168948189cec31d0678d2b55b395f88491 - Patch | |
| References | () https://git.kernel.org/stable/c/c069db76ed7b681c69159f44be96d2137e9ca989 - Patch | |
| References | () https://git.kernel.org/stable/c/f92ded66e9d0aa20b883a2a5183973abc8f41815 - Patch | 
26 Feb 2025, 07:01
| Type | Values Removed | Values Added | 
|---|---|---|
| New CVE | 
Information
                Published : 2025-02-26 07:01
Updated : 2025-10-01 21:15
NVD link : CVE-2022-49408
Mitre link : CVE-2022-49408
CVE.ORG link : CVE-2022-49408
JSON object : View
Products Affected
                linux
- linux_kernel
CWE
                
                    
                        
                        CWE-401
                        
            Missing Release of Memory after Effective Lifetime
