Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-49791

In the Linux kernel, the following vulnerability has been resolved: io_uring: fix multishot accept request leaks Having REQ_F_POLLED set doesn't guarantee that the request is executed as a multishot from the polling path. Fortunately for us, if the code thinks it's multishot issue when it's not, it can only ask to skip completion so leaking the request. Use issue_flags to mark multipoll issues.

Published

2025-05-01T15:16:02.367

Last Modified

2025-11-05T15:19:04.940

Status

Analyzed

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

Severity

CVSSv3.1: 5.5 (MEDIUM)

Weaknesses

Type: Primary
CWE-401

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	linux	linux_kernel	< 6.0.10	Yes
Operating System	linux	linux_kernel	6.1	Yes
Operating System	linux	linux_kernel	6.1	Yes
Operating System	linux	linux_kernel	6.1	Yes
Operating System	linux	linux_kernel	6.1	Yes
Operating System	linux	linux_kernel	6.1	Yes

References

https://git.kernel.org/stable/c/0e4626de856ef8f25ecd9c716e76d4f95ce95639 Patch (416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/91482864768a874c4290ef93b84a78f4f1dac51b Patch (416baaa9-dc9f-4396-8d5f-8c081fb06d67)