{"id":"CVE-2022-49381","summary":"jffs2: fix memory leak in jffs2_do_fill_super","details":"In the Linux kernel, the following vulnerability has been resolved:\n\njffs2: fix memory leak in jffs2_do_fill_super\n\nIf jffs2_iget() or d_make_root() in jffs2_do_fill_super() returns\nan error, we can observe the following kmemleak report:\n\n--------------------------------------------\nunreferenced object 0xffff888105a65340 (size 64):\n  comm \"mount\", pid 710, jiffies 4302851558 (age 58.239s)\n  hex dump (first 32 bytes):\n    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n  backtrace:\n    [\u003cffffffff859c45e5\u003e] kmem_cache_alloc_trace+0x475/0x8a0\n    [\u003cffffffff86160146\u003e] jffs2_sum_init+0x96/0x1a0\n    [\u003cffffffff86140e25\u003e] jffs2_do_mount_fs+0x745/0x2120\n    [\u003cffffffff86149fec\u003e] jffs2_do_fill_super+0x35c/0x810\n    [\u003cffffffff8614aae9\u003e] jffs2_fill_super+0x2b9/0x3b0\n    [...]\nunreferenced object 0xffff8881bd7f0000 (size 65536):\n  comm \"mount\", pid 710, jiffies 4302851558 (age 58.239s)\n  hex dump (first 32 bytes):\n    bb bb bb bb bb bb bb bb bb bb bb bb bb bb bb bb  ................\n    bb bb bb bb bb bb bb bb bb bb bb bb bb bb bb bb  ................\n  backtrace:\n    [\u003cffffffff858579ba\u003e] kmalloc_order+0xda/0x110\n    [\u003cffffffff85857a11\u003e] kmalloc_order_trace+0x21/0x130\n    [\u003cffffffff859c2ed1\u003e] __kmalloc+0x711/0x8a0\n    [\u003cffffffff86160189\u003e] jffs2_sum_init+0xd9/0x1a0\n    [\u003cffffffff86140e25\u003e] jffs2_do_mount_fs+0x745/0x2120\n    [\u003cffffffff86149fec\u003e] jffs2_do_fill_super+0x35c/0x810\n    [\u003cffffffff8614aae9\u003e] jffs2_fill_super+0x2b9/0x3b0\n    [...]\n--------------------------------------------\n\nThis is because the resources allocated in jffs2_sum_init() are not\nreleased. Call jffs2_sum_exit() to release these resources to solve\nthe problem.","modified":"2026-03-20T12:22:24.264157Z","published":"2025-02-26T02:11:18.812Z","related":["SUSE-SU-2025:1027-1","SUSE-SU-2025:1176-1","SUSE-SU-2025:1183-1","SUSE-SU-2025:1241-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49381.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/28048a4cf3813b7cf5cc8cce629dfdc7951cb1c2"},{"type":"WEB","url":"https://git.kernel.org/stable/c/3252d327f977b14663a10967f3b0930d6c325687"},{"type":"WEB","url":"https://git.kernel.org/stable/c/4ba7bbeab8009faf3a726e565d98816593ddd5b0"},{"type":"WEB","url":"https://git.kernel.org/stable/c/4da8763a3d2b684c773b72ed80fad40bc264bc40"},{"type":"WEB","url":"https://git.kernel.org/stable/c/69295267c481545f636b69ff341b8db75aa136b9"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c14adb1cf70a984ed081c67e9d27bc3caad9537c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/cf9db013e167bc8fc2ecd7a13ed97a37df0c9dab"},{"type":"WEB","url":"https://git.kernel.org/stable/c/d3a4fff1e7e408c32649030daa7c2c42a7e19a95"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ecc53e58596542791e82eff00702f8af7a313f70"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49381.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-49381"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"e631ddba588783edd521c5a89f7b2902772fb691"},{"fixed":"4ba7bbeab8009faf3a726e565d98816593ddd5b0"},{"fixed":"4da8763a3d2b684c773b72ed80fad40bc264bc40"},{"fixed":"28048a4cf3813b7cf5cc8cce629dfdc7951cb1c2"},{"fixed":"d3a4fff1e7e408c32649030daa7c2c42a7e19a95"},{"fixed":"3252d327f977b14663a10967f3b0930d6c325687"},{"fixed":"ecc53e58596542791e82eff00702f8af7a313f70"},{"fixed":"cf9db013e167bc8fc2ecd7a13ed97a37df0c9dab"},{"fixed":"69295267c481545f636b69ff341b8db75aa136b9"},{"fixed":"c14adb1cf70a984ed081c67e9d27bc3caad9537c"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49381.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}