CVE-2022-50754 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix a memleak in multi_transaction_new() In multi_transaction_new(), the variable t is not freed or passed out on the failure of copy_from_user(t->data, buf, size), which could lead to a memleak. Fix this bug by adding a put_multi_transaction(t) in the error path.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

References

Link	Providers
https://git.kernel.org/stable/c/11d5fe7da67c3334cefc981297fd5defb78df15c
https://git.kernel.org/stable/c/3d27a436e294ac5d7a51bd5348ca63a42a468b35
https://git.kernel.org/stable/c/775a37ffa9f4681c4ad84c8634a7eec8af7098d4
https://git.kernel.org/stable/c/88989932c2269ea66074f52a6213598838f8b9e7
https://git.kernel.org/stable/c/935d86b29093e75b6c547d90b3979c2c2d23f1c4
https://git.kernel.org/stable/c/95e6adc6a7a4761ddf69ad713e55a06a3206309d
https://git.kernel.org/stable/c/c73275cf6834787ca090317f1d20dbfa3b7f05aa
https://git.kernel.org/stable/c/eb0f78e28cbc8f97439c0a4c80ee5160c1df5ce6

History

Wed, 24 Dec 2025 13:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: apparmor: fix a memleak in multi_transaction_new() In multi_transaction_new(), the variable t is not freed or passed out on the failure of copy_from_user(t->data, buf, size), which could lead to a memleak. Fix this bug by adding a put_multi_transaction(t) in the error path.
Title		apparmor: fix a memleak in multi_transaction_new()
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/11d5fe7da67c3334cefc981297fd5defb78df15c https://git.kernel.org/stable/c/3d27a436e294ac5d7a51bd5348ca63a42a468b35 https://git.kernel.org/stable/c/775a37ffa9f4681c4ad84c8634a7eec8af7098d4 https://git.kernel.org/stable/c/88989932c2269ea66074f52a6213598838f8b9e7 https://git.kernel.org/stable/c/935d86b29093e75b6c547d90b3979c2c2d23f1c4 https://git.kernel.org/stable/c/95e6adc6a7a4761ddf69ad713e55a06a3206309d https://git.kernel.org/stable/c/c73275cf6834787ca090317f1d20dbfa3b7f05aa https://git.kernel.org/stable/c/eb0f78e28cbc8f97439c0a4c80ee5160c1df5ce6

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-12-24T13:05:48.245Z

Updated: 2025-12-24T13:05:48.245Z

Reserved: 2025-12-24T13:02:21.544Z

Link: CVE-2022-50754

Vulnrichment

No data.

NVD

Status : Received

Published: 2025-12-24T13:16:02.140

Modified: 2025-12-24T13:16:02.140

Link: CVE-2022-50754

Redhat

No data.

OpenCVE Enrichment

No data.

Metrics

Affected Vendors & Products

Metrics

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object