2363412 – (CVE-2022-49912) CVE-2022-49912 kernel: btrfs: fix ulist leaks in error paths of qgroup self tests

Bug 2363412 (CVE-2022-49912) - CVE-2022-49912 kernel: btrfs: fix ulist leaks in error paths of qgroup self tests

Summary: CVE-2022-49912 kernel: btrfs: fix ulist leaks in error paths of qgroup self t...

Keywords:
Status:	NEW
Alias:	CVE-2022-49912
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-05-01 15:03 UTC by OSIDB Bzimport
Modified:	2025-05-02 05:58 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-05-01 15:03:38 UTC

In the Linux kernel, the following vulnerability has been resolved:

btrfs: fix ulist leaks in error paths of qgroup self tests

In the test_no_shared_qgroup() and test_multiple_refs() qgroup self tests,
if we fail to add the tree ref, remove the extent item or remove the
extent ref, we are returning from the test function without freeing the
"old_roots" ulist that was allocated by the previous calls to
btrfs_find_all_roots(). Fix that by calling ulist_free() before returning.

Comment 1 Avinash Hanwate 2025-05-02 05:46:40 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025050105-CVE-2022-49912-d951@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.