CVE-2022-49853

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> net: macvlan: fix memory leaks of macvlan_common_newlink<br /> <br /> kmemleak reports memory leaks in macvlan_common_newlink, as follows:<br /> <br /> ip link add link eth0 name .. type macvlan mode source macaddr add<br /> <br /> <br /> kmemleak reports:<br /> <br /> unreferenced object 0xffff8880109bb140 (size 64):<br /> comm "ip", pid 284, jiffies 4294986150 (age 430.108s)<br /> hex dump (first 32 bytes):<br /> 00 00 00 00 00 00 00 00 b8 aa 5a 12 80 88 ff ff ..........Z.....<br /> 80 1b fa 0d 80 88 ff ff 1e ff ac af c7 c1 6b 6b ..............kk<br /> backtrace:<br /> [] kmem_cache_alloc_trace+0x1c7/0x300<br /> [] macvlan_hash_add_source+0x45/0xc0<br /> [] macvlan_changelink_sources+0xd7/0x170<br /> [] macvlan_common_newlink+0x38c/0x5a0<br /> [] macvlan_newlink+0xe/0x20<br /> [] __rtnl_newlink+0x7af/0xa50<br /> [] rtnl_newlink+0x48/0x70<br /> ...<br /> <br /> In the scenario where the macvlan mode is configured as &amp;#39;source&amp;#39;,<br /> macvlan_changelink_sources() will be execured to reconfigure list of<br /> remote source mac addresses, at the same time, if register_netdevice()<br /> return an error, the resource generated by macvlan_changelink_sources()<br /> is not cleaned up.<br /> <br /> Using this patch, in the case of an error, it will execute<br /> macvlan_flush_sources() to ensure that the resource is cleaned up.