CVE-2022-50577

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> ima: Fix memory leak in __ima_inode_hash()<br /> <br /> Commit f3cc6b25dcc5 ("ima: always measure and audit files in policy") lets<br /> measurement or audit happen even if the file digest cannot be calculated.<br /> <br /> As a result, iint-&gt;ima_hash could have been allocated despite<br /> ima_collect_measurement() returning an error.<br /> <br /> Since ima_hash belongs to a temporary inode metadata structure, declared<br /> at the beginning of __ima_inode_hash(), just add a kfree() call if<br /> ima_collect_measurement() returns an error different from -ENOMEM (in that<br /> case, ima_hash should not have been allocated).