[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-50661":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":14,"duplicates":29,"related":30,"reserved_at":9,"published_at":35,"modified_at":36,"state":37,"summary":38,"references_raw":42,"kevs":65,"epss":66,"epss_history":69,"metrics":337,"affected":338},"CVE-2022-50661","In the Linux kernel, the following vulnerability has been resolved:\n\nseccomp: Move copy_seccomp() to no failure path.\n\nOur syzbot instance reported memory leaks in do_seccomp() [0], similar\nto the report [1].  It shows that we miss freeing struct seccomp_filter\nand some objects included in it.\n\nWe can reproduce the issue with the program below [2] which calls one\nseccomp() and two clone() syscalls.\n\nThe first clone()d child exits earlier than its parent and sends a\nsignal to kill it during the second clone(), more precisely before the\nfatal_signal_pending() test in copy_process().  When the parent receives\nthe signal, it has to destroy the embryonic process and return -EINTR to\nuser space.  In the failure path, we have to call seccomp_filter_release()\nto decrement the filter's refcount.\n\nInitially, we called it in free_task() called from the failure path, but\nthe commit 3a15fb6ed92c (\"seccomp: release filter after task is fully\ndead\") moved it to release_task() to notify user space as early as possible\nthat the filter is no longer used.\n\nTo keep the change and current seccomp refcount semantics, let's move\ncopy_seccomp() just after the signal check and add a WARN_ON_ONCE() in\nfree_task() for future debugging.\n\n[0]:\nunreferenced object 0xffff8880063add00 (size 256):\n  comm \"repro_seccomp\", pid 230, jiffies 4294687090 (age 9.914s)\n  hex dump (first 32 bytes):\n    01 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00  ................\n    ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................\n  backtrace:\n    do_seccomp (./include/linux/slab.h:600 ./include/linux/slab.h:733 kernel/seccomp.c:666 kernel/seccomp.c:708 kernel/seccomp.c:1871 kernel/seccomp.c:1991)\n    do_syscall_64 (arch/x86/entry/common.c:50 arch/x86/entry/common.c:80)\n    entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:120)\nunreferenced object 0xffffc90000035000 (size 4096):\n  comm \"repro_seccomp\", pid 230, jiffies 4294687090 (age 9.915s)\n  hex dump (first 32 bytes):\n    01 00 00 00 00 00 00 00 00 00 00 00 05 00 00 00  ................\n    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n  backtrace:\n    __vmalloc_node_range (mm/vmalloc.c:3226)\n    __vmalloc_node (mm/vmalloc.c:3261 (discriminator 4))\n    bpf_prog_alloc_no_stats (kernel/bpf/core.c:91)\n    bpf_prog_alloc (kernel/bpf/core.c:129)\n    bpf_prog_create_from_user (net/core/filter.c:1414)\n    do_seccomp (kernel/seccomp.c:671 kernel/seccomp.c:708 kernel/seccomp.c:1871 kernel/seccomp.c:1991)\n    do_syscall_64 (arch/x86/entry/common.c:50 arch/x86/entry/common.c:80)\n    entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:120)\nunreferenced object 0xffff888003fa1000 (size 1024):\n  comm \"repro_seccomp\", pid 230, jiffies 4294687090 (age 9.915s)\n  hex dump (first 32 bytes):\n    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n  backtrace:\n    bpf_prog_alloc_no_stats (./include/linux/slab.h:600 ./include/linux/slab.h:733 kernel/bpf/core.c:95)\n    bpf_prog_alloc (kernel/bpf/core.c:129)\n    bpf_prog_create_from_user (net/core/filter.c:1414)\n    do_seccomp (kernel/seccomp.c:671 kernel/seccomp.c:708 kernel/seccomp.c:1871 kernel/seccomp.c:1991)\n    do_syscall_64 (arch/x86/entry/common.c:50 arch/x86/entry/common.c:80)\n    entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:120)\nunreferenced object 0xffff888006360240 (size 16):\n  comm \"repro_seccomp\", pid 230, jiffies 4294687090 (age 9.915s)\n  hex dump (first 16 bytes):\n    01 00 37 00 76 65 72 6c e0 83 01 06 80 88 ff ff  ..7.verl........\n  backtrace:\n    bpf_prog_store_orig_filter (net/core/filter.c:1137)\n    bpf_prog_create_from_user (net/core/filter.c:1428)\n    do_seccomp (kernel/seccomp.c:671 kernel/seccomp.c:708 kernel/seccomp.c:1871 kernel/seccomp.c:1991)\n    do_syscall_64 (arch/x86/entry/common.c:50 arch/x86/entry/common.c:80)\n    entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:120)\nunreferenced object 0xffff888\n---truncated---",null,[],[],[],[],[15,17,19,21,23,25,27],{"_key":16},"SUSE-SU-2026:0263-1",{"_key":18},"SUSE-SU-2026:0411-1",{"_key":20},"SUSE-SU-2026:0617-1",{"_key":22},"SUSE-SU-2026:0317-1",{"_key":24},"DEBIAN-CVE-2022-50661",{"_key":26},"RHSA-2023:5069",{"_key":28},"UBUNTU-CVE-2022-50661",[],[31,32,33,34],{"_key":16},{"_key":18},{"_key":20},{"_key":22},"2025-12-09T01:29:09.498Z","2026-05-11T19:23:11.092Z","Deferred",{"cisa_kev":39,"cisa_ransomware":39,"cisa_vendor":9,"epss_severity":40,"epss_score":41,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":37},false,"low",0.00029,[43,49,53,57,61],{"url":44,"sources":45,"tags":48},"https://git.kernel.org/stable/c/d4a895e924b486f2a38463114509e1088ef4d7f5",[46,47],"cve.org","nvd",[],{"url":50,"sources":51,"tags":52},"https://git.kernel.org/stable/c/a31a647a3d1073a642c5bbe3457731fb353cb980",[46,47],[],{"url":54,"sources":55,"tags":56},"https://git.kernel.org/stable/c/29a69fa075d0577eff1137426669de21187ec182",[46,47],[],{"url":58,"sources":59,"tags":60},"https://git.kernel.org/stable/c/5b81f0c6c60e35bf8153230ddfb03ebb14e17986",[46,47],[],{"url":62,"sources":63,"tags":64},"https://git.kernel.org/stable/c/a1140cb215fa13dcec06d12ba0c3ee105633b7c4",[46,47],[],[],{"date":67,"score":41,"percentile":68},"2026-06-03",0.08881,[70,74,77,80,83,86,89,93,96,99,102,105,108,111,114,117,120,123,126,129,131,134,137,140,143,146,149,152,155,158,161,164,167,171,174,177,180,183,186,189,192,195,198,201,203,206,209,212,214,217,220,223,225,227,230,233,236,239,242,245,248,251,254,257,260,263,266,269,271,275,278,281,284,287,290,292,295,298,301,304,307,310,313,316,319,322,325,328,331,334],{"date":71,"score":72,"percentile":73},"2025-12-09",0.00018,0.0382,{"date":75,"score":72,"percentile":76},"2025-12-10",0.03853,{"date":78,"score":72,"percentile":79},"2025-12-11",0.03845,{"date":81,"score":72,"percentile":82},"2025-12-12",0.0386,{"date":84,"score":72,"percentile":85},"2025-12-13",0.03871,{"date":87,"score":72,"percentile":88},"2025-12-14",0.03862,{"date":90,"score":91,"percentile":92},"2025-12-15",0.00024,0.05596,{"date":94,"score":91,"percentile":95},"2025-12-16",0.0561,{"date":97,"score":91,"percentile":98},"2025-12-17",0.05674,{"date":100,"score":91,"percentile":101},"2025-12-18",0.05711,{"date":103,"score":91,"percentile":104},"2025-12-19",0.05703,{"date":106,"score":91,"percentile":107},"2025-12-20",0.05699,{"date":109,"score":91,"percentile":110},"2025-12-21",0.05687,{"date":112,"score":91,"percentile":113},"2025-12-22",0.05645,{"date":115,"score":91,"percentile":116},"2025-12-23",0.05657,{"date":118,"score":91,"percentile":119},"2025-12-24",0.0569,{"date":121,"score":91,"percentile":122},"2025-12-25",0.05725,{"date":124,"score":91,"percentile":125},"2025-12-26",0.0572,{"date":127,"score":91,"percentile":128},"2025-12-27",0.05717,{"date":130,"score":91,"percentile":101},"2025-12-28",{"date":132,"score":91,"percentile":133},"2025-12-29",0.05698,{"date":135,"score":91,"percentile":136},"2025-12-30",0.05696,{"date":138,"score":91,"percentile":139},"2025-12-31",0.05731,{"date":141,"score":91,"percentile":142},"2026-01-01",0.05802,{"date":144,"score":91,"percentile":145},"2026-01-02",0.058,{"date":147,"score":91,"percentile":148},"2026-01-03",0.05762,{"date":150,"score":91,"percentile":151},"2026-01-04",0.05667,{"date":153,"score":91,"percentile":154},"2026-01-05",0.05639,{"date":156,"score":91,"percentile":157},"2026-01-06",0.05637,{"date":159,"score":91,"percentile":160},"2026-01-07",0.05659,{"date":162,"score":91,"percentile":163},"2026-01-08",0.05723,{"date":165,"score":91,"percentile":166},"2026-01-09",0.05716,{"date":168,"score":169,"percentile":170},"2026-01-10",0.00026,0.06489,{"date":172,"score":169,"percentile":173},"2026-01-11",0.06482,{"date":175,"score":169,"percentile":176},"2026-01-12",0.06452,{"date":178,"score":169,"percentile":179},"2026-01-13",0.06436,{"date":181,"score":169,"percentile":182},"2026-01-14",0.06488,{"date":184,"score":169,"percentile":185},"2026-01-15",0.06494,{"date":187,"score":169,"percentile":188},"2026-01-16",0.06513,{"date":190,"score":169,"percentile":191},"2026-01-17",0.06519,{"date":193,"score":169,"percentile":194},"2026-01-18",0.06509,{"date":196,"score":169,"percentile":197},"2026-01-19",0.0648,{"date":199,"score":169,"percentile":200},"2026-01-20",0.0644,{"date":202,"score":169,"percentile":179},"2026-01-21",{"date":204,"score":169,"percentile":205},"2026-01-22",0.06404,{"date":207,"score":169,"percentile":208},"2026-01-23",0.06472,{"date":210,"score":169,"percentile":211},"2026-01-24",0.06517,{"date":213,"score":169,"percentile":170},"2026-01-25",{"date":215,"score":169,"percentile":216},"2026-01-26",0.06475,{"date":218,"score":169,"percentile":219},"2026-01-27",0.06461,{"date":221,"score":169,"percentile":222},"2026-01-28",0.06438,{"date":224,"score":169,"percentile":179},"2026-01-29",{"date":226,"score":169,"percentile":176},"2026-01-30",{"date":228,"score":169,"percentile":229},"2026-01-31",0.06459,{"date":231,"score":169,"percentile":232},"2026-02-01",0.06512,{"date":234,"score":169,"percentile":235},"2026-02-02",0.06498,{"date":237,"score":169,"percentile":238},"2026-02-03",0.06495,{"date":240,"score":169,"percentile":241},"2026-02-04",0.06515,{"date":243,"score":169,"percentile":244},"2026-02-05",0.06565,{"date":246,"score":169,"percentile":247},"2026-02-06",0.06602,{"date":249,"score":169,"percentile":250},"2026-02-07",0.06613,{"date":252,"score":169,"percentile":253},"2026-02-08",0.066,{"date":255,"score":169,"percentile":256},"2026-02-09",0.06569,{"date":258,"score":169,"percentile":259},"2026-02-10",0.0655,{"date":261,"score":169,"percentile":262},"2026-02-11",0.06591,{"date":264,"score":169,"percentile":265},"2026-02-12",0.0662,{"date":267,"score":169,"percentile":268},"2026-02-13",0.06608,{"date":270,"score":169,"percentile":262},"2026-02-14",{"date":272,"score":273,"percentile":274},"2026-02-15",0.00027,0.07008,{"date":276,"score":273,"percentile":277},"2026-02-16",0.06997,{"date":279,"score":273,"percentile":280},"2026-02-17",0.06966,{"date":282,"score":273,"percentile":283},"2026-02-18",0.07316,{"date":285,"score":273,"percentile":286},"2026-02-19",0.07381,{"date":288,"score":273,"percentile":289},"2026-02-20",0.07373,{"date":291,"score":273,"percentile":286},"2026-02-21",{"date":293,"score":273,"percentile":294},"2026-02-22",0.07371,{"date":296,"score":273,"percentile":297},"2026-02-23",0.07367,{"date":299,"score":273,"percentile":300},"2026-02-24",0.07353,{"date":302,"score":273,"percentile":303},"2026-02-25",0.07281,{"date":305,"score":273,"percentile":306},"2026-02-26",0.07228,{"date":308,"score":273,"percentile":309},"2026-02-27",0.07244,{"date":311,"score":273,"percentile":312},"2026-02-28",0.07255,{"date":314,"score":273,"percentile":315},"2026-03-01",0.07301,{"date":317,"score":273,"percentile":318},"2026-03-02",0.07237,{"date":320,"score":273,"percentile":321},"2026-03-03",0.07242,{"date":323,"score":273,"percentile":324},"2026-03-04",0.07186,{"date":326,"score":273,"percentile":327},"2026-03-05",0.07209,{"date":329,"score":273,"percentile":330},"2026-03-06",0.07202,{"date":332,"score":273,"percentile":333},"2026-03-07",0.07206,{"date":335,"score":273,"percentile":336},"2026-03-08",0.0719,[],[339],{"ecosystem":9,"name":340,"vendor":341,"product":341,"cpe_part":342,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":343},"Linux","linux","a",[344,351,354,357,360,363],{"version":345,"is_range":346,"range_type":46,"version_start":347,"version_start_type":348,"version_end":349,"version_end_type":350,"fixed_in":9},">= 3a15fb6ed92cb32b0a83f406aa4a96f28c9adbc3, \u003C d4a895e924b486f2a38463114509e1088ef4d7f5",true,"3a15fb6ed92cb32b0a83f406aa4a96f28c9adbc3","including","d4a895e924b486f2a38463114509e1088ef4d7f5","excluding",{"version":352,"is_range":346,"range_type":46,"version_start":347,"version_start_type":348,"version_end":353,"version_end_type":350,"fixed_in":9},">= 3a15fb6ed92cb32b0a83f406aa4a96f28c9adbc3, \u003C a31a647a3d1073a642c5bbe3457731fb353cb980","a31a647a3d1073a642c5bbe3457731fb353cb980",{"version":355,"is_range":346,"range_type":46,"version_start":347,"version_start_type":348,"version_end":356,"version_end_type":350,"fixed_in":9},">= 3a15fb6ed92cb32b0a83f406aa4a96f28c9adbc3, \u003C 29a69fa075d0577eff1137426669de21187ec182","29a69fa075d0577eff1137426669de21187ec182",{"version":358,"is_range":346,"range_type":46,"version_start":347,"version_start_type":348,"version_end":359,"version_end_type":350,"fixed_in":9},">= 3a15fb6ed92cb32b0a83f406aa4a96f28c9adbc3, \u003C 5b81f0c6c60e35bf8153230ddfb03ebb14e17986","5b81f0c6c60e35bf8153230ddfb03ebb14e17986",{"version":361,"is_range":346,"range_type":46,"version_start":347,"version_start_type":348,"version_end":362,"version_end_type":350,"fixed_in":9},">= 3a15fb6ed92cb32b0a83f406aa4a96f28c9adbc3, \u003C a1140cb215fa13dcec06d12ba0c3ee105633b7c4","a1140cb215fa13dcec06d12ba0c3ee105633b7c4",{"version":364,"is_range":39,"range_type":46,"version_start":364,"version_start_type":348,"version_end":364,"version_end_type":348,"fixed_in":9},"5.9"]