CVE-2022-49153

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Feb 26, 2025

Updated: Mar 13, 2025

CWE ID 401

Summary

CVE-2022-49153: A vulnerability was discovered in the Linux kernel's WireGuard implementation. When IPv6 is disabled, the socket's send6() function fails to free an Skbuff object in wg_socket_send_buffer_as_reply_to_skb() and wg_socket_send_buffer_to_peer(). This results in a memory leak, as reported with unreferenced object 0xfffff881191fc040. The issue arises due to the absence of kfree_skb() in the absence of IPv6 configurations. This patch resolves the vulnerability by adding kfree_skb() to ensure proper memory management.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Linux Kernel

Affected Vendors

LINUX

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/3uqxjy
https://www.cve.org/CVERecord?id=CVE-2022-49153
https://nvd.nist.gov/vuln/detail/CVE-2022-49153

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Know What Matters

For Customers

For Partners