CVE-2022-49791

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

01/05/2025

Last modified:

02/05/2025

Description

In the Linux kernel, the following vulnerability has been resolved: io_uring: fix multishot accept request leaks Having REQ_F_POLLED set doesn&#39;t guarantee that the request is executed as a multishot from the polling path. Fortunately for us, if the code thinks it&#39;s multishot issue when it&#39;s not, it can only ask to skip completion so leaking the request. Use issue_flags to mark multipoll issues.

Impact

References to Advisories, Solutions, and Tools

https://git.kernel.org/stable/c/0e4626de856ef8f25ecd9c716e76d4f95ce95639
https://git.kernel.org/stable/c/91482864768a874c4290ef93b84a78f4f1dac51b