Ubuntu: (CVE-2022-49277): linux vulnerability
Description
In the Linux kernel, the following vulnerability has been resolved: jffs2: fix memory leak in jffs2_do_mount_fs If jffs2_build_filesystem() in jffs2_do_mount_fs() returns an error, we can observe the following kmemleak report: -------------------------------------------- unreferenced object 0xffff88811b25a640 (size 64): comm "mount", pid 691, jiffies 4294957728 (age 71.952s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<ffffffffa493be24>] kmem_cache_alloc_trace+0x584/0x880 [<ffffffffa5423a06>] jffs2_sum_init+0x86/0x130 [<ffffffffa5400e58>] jffs2_do_mount_fs+0x798/0xac0 [<ffffffffa540acf3>] jffs2_do_fill_super+0x383/0xc30 [<ffffffffa540c00a>] jffs2_fill_super+0x2ea/0x4c0 [...] unreferenced object 0xffff88812c760000 (size 65536): comm "mount", pid 691, jiffies 4294957728 (age 71.952s) hex dump (first 32 bytes): bb bb bb bb bb bb bb bb bb bb bb bb bb bb bb bb ................ bb bb bb bb bb bb bb bb bb bb bb bb bb bb bb bb ................ backtrace: [<ffffffffa493a449>] __kmalloc+0x6b9/0x910 [<ffffffffa5423a57>] jffs2_sum_init+0xd7/0x130 [<ffffffffa5400e58>] jffs2_do_mount_fs+0x798/0xac0 [<ffffffffa540acf3>] jffs2_do_fill_super+0x383/0xc30 [<ffffffffa540c00a>] jffs2_fill_super+0x2ea/0x4c0 [...] -------------------------------------------- This is because the resources allocated in jffs2_sum_init() are not released. Call jffs2_sum_exit() to release these resources to solve the problem.
Solution(s)
- ubuntu-upgrade-linux
- ubuntu-upgrade-linux-aws
- ubuntu-upgrade-linux-aws-5-4
- ubuntu-upgrade-linux-aws-fips
- ubuntu-upgrade-linux-aws-hwe
- ubuntu-upgrade-linux-azure
- ubuntu-upgrade-linux-azure-4-15
- ubuntu-upgrade-linux-azure-5-15
- ubuntu-upgrade-linux-azure-5-4
- ubuntu-upgrade-linux-azure-fips
- ubuntu-upgrade-linux-bluefield
- ubuntu-upgrade-linux-fips
- ubuntu-upgrade-linux-gcp
- ubuntu-upgrade-linux-gcp-4-15
- ubuntu-upgrade-linux-gcp-5-4
- ubuntu-upgrade-linux-gcp-fips
- ubuntu-upgrade-linux-gke
- ubuntu-upgrade-linux-hwe
- ubuntu-upgrade-linux-hwe-5-15
- ubuntu-upgrade-linux-hwe-5-4
- ubuntu-upgrade-linux-ibm
- ubuntu-upgrade-linux-ibm-5-4
- ubuntu-upgrade-linux-intel-iotg
- ubuntu-upgrade-linux-intel-iotg-5-15
- ubuntu-upgrade-linux-iot
- ubuntu-upgrade-linux-kvm
- ubuntu-upgrade-linux-lowlatency
- ubuntu-upgrade-linux-lowlatency-hwe-5-15
- ubuntu-upgrade-linux-oracle
- ubuntu-upgrade-linux-oracle-5-4
- ubuntu-upgrade-linux-raspi
- ubuntu-upgrade-linux-raspi-5-4
- ubuntu-upgrade-linux-realtime
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center