{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2022-49020","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2024-08-22T01:27:53.649Z","datePublished":"2024-10-21T20:06:27.976Z","dateUpdated":"2025-05-04T08:28:13.138Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2025-05-04T08:28:13.138Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet/9p: Fix a potential socket leak in p9_socket_open\n\nBoth p9_fd_create_tcp() and p9_fd_create_unix() will call\np9_socket_open(). If the creation of p9_trans_fd fails,\np9_fd_create_tcp() and p9_fd_create_unix() will return an\nerror directly instead of releasing the cscoket, which will\nresult in a socket leak.\n\nThis patch adds sock_release() to fix the leak issue."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["net/9p/trans_fd.c"],"versions":[{"version":"6b18662e239a032f908b7f6e164bdf7e2e0a32c9","lessThan":"0396227f4daf4792a6a8aaa3b7771dc25c4cd443","status":"affected","versionType":"git"},{"version":"6b18662e239a032f908b7f6e164bdf7e2e0a32c9","lessThan":"ded893965b895b2dccd3d1436d8d3daffa23ea64","status":"affected","versionType":"git"},{"version":"6b18662e239a032f908b7f6e164bdf7e2e0a32c9","lessThan":"8b14bd0b500aec1458b51cb621c8e5fab3304260","status":"affected","versionType":"git"},{"version":"6b18662e239a032f908b7f6e164bdf7e2e0a32c9","lessThan":"2d24d91b9f44620824fc37b766f7cae00ca32748","status":"affected","versionType":"git"},{"version":"6b18662e239a032f908b7f6e164bdf7e2e0a32c9","lessThan":"e01c1542379fb395e7da53706df598f38905dfbf","status":"affected","versionType":"git"},{"version":"6b18662e239a032f908b7f6e164bdf7e2e0a32c9","lessThan":"8782b32ef867de7981bbe9e86ecb90e92e8780bd","status":"affected","versionType":"git"},{"version":"6b18662e239a032f908b7f6e164bdf7e2e0a32c9","lessThan":"aa08323fe18cb7cf95317ffa2d54ca1de8e74ebd","status":"affected","versionType":"git"},{"version":"6b18662e239a032f908b7f6e164bdf7e2e0a32c9","lessThan":"dcc14cfd7debe11b825cb077e75d91d2575b4cb8","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["net/9p/trans_fd.c"],"versions":[{"version":"2.6.33","status":"affected"},{"version":"0","lessThan":"2.6.33","status":"unaffected","versionType":"semver"},{"version":"4.9.335","lessThanOrEqual":"4.9.*","status":"unaffected","versionType":"semver"},{"version":"4.14.301","lessThanOrEqual":"4.14.*","status":"unaffected","versionType":"semver"},{"version":"4.19.268","lessThanOrEqual":"4.19.*","status":"unaffected","versionType":"semver"},{"version":"5.4.226","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.158","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.82","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.0.12","lessThanOrEqual":"6.0.*","status":"unaffected","versionType":"semver"},{"version":"6.1","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.33","versionEndExcluding":"4.9.335"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.33","versionEndExcluding":"4.14.301"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.33","versionEndExcluding":"4.19.268"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.33","versionEndExcluding":"5.4.226"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.33","versionEndExcluding":"5.10.158"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.33","versionEndExcluding":"5.15.82"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.33","versionEndExcluding":"6.0.12"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.33","versionEndExcluding":"6.1"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/0396227f4daf4792a6a8aaa3b7771dc25c4cd443"},{"url":"https://git.kernel.org/stable/c/ded893965b895b2dccd3d1436d8d3daffa23ea64"},{"url":"https://git.kernel.org/stable/c/8b14bd0b500aec1458b51cb621c8e5fab3304260"},{"url":"https://git.kernel.org/stable/c/2d24d91b9f44620824fc37b766f7cae00ca32748"},{"url":"https://git.kernel.org/stable/c/e01c1542379fb395e7da53706df598f38905dfbf"},{"url":"https://git.kernel.org/stable/c/8782b32ef867de7981bbe9e86ecb90e92e8780bd"},{"url":"https://git.kernel.org/stable/c/aa08323fe18cb7cf95317ffa2d54ca1de8e74ebd"},{"url":"https://git.kernel.org/stable/c/dcc14cfd7debe11b825cb077e75d91d2575b4cb8"}],"title":"net/9p: Fix a potential socket leak in p9_socket_open","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2022-49020","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"version":"2.0.3","timestamp":"2024-10-22T13:12:42.990180Z"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-10-22T13:18:37.309Z"}}]}}