{"id":"CVE-2022-49183","summary":"net/sched: act_ct: fix ref leak when switching zones","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: act_ct: fix ref leak when switching zones\n\nWhen switching zones or network namespaces without doing a ct clear in\nbetween, it is now leaking a reference to the old ct entry. That's\nbecause tcf_ct_skb_nfct_cached() returns false and\ntcf_ct_flow_table_lookup() may simply overwrite it.\n\nThe fix is to, as the ct entry is not reusable, free it already at\ntcf_ct_skb_nfct_cached().","modified":"2026-04-02T08:27:22.185521Z","published":"2025-02-26T01:55:34.041Z","related":["SUSE-SU-2025:1176-1","SUSE-SU-2025:1241-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49183.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/4bb42d73def9411e5cad885b9811987d72431df1"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b24793a37d91aacad7cb9893b226a7924a89636a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/bcb74e132a76ce0502bb33d5b65533a4ed72d159"},{"type":"WEB","url":"https://git.kernel.org/stable/c/bcbf4e5c3b5b373cd61528392dd1ec8e9c0fd33d"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49183.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-49183"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"a95ea90deb3071c1ded77a05e91cfebc5238d908"},{"fixed":"bcbf4e5c3b5b373cd61528392dd1ec8e9c0fd33d"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"e9408de00e5ecd0dbe91cf061c7da23711c4febb"},{"fixed":"4bb42d73def9411e5cad885b9811987d72431df1"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"2f131de361f6d0eaff17db26efdb844c178432f8"},{"fixed":"b24793a37d91aacad7cb9893b226a7924a89636a"},{"fixed":"bcb74e132a76ce0502bb33d5b65533a4ed72d159"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0"},{"last_affected":"0fc1847359964e95e521cf2bb2b10f8e33dd0970"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49183.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}