CVE-2022-50754
Published Dec 24, 2025
Modified Apr 15, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix a memleak in multi_transaction_new() In multi_transaction_new(), the variable t is not freed or passed out on the failure of copy_from_user(t->data, buf, size), which could lead to a memleak. Fix this bug by adding a put_multi_transaction(t) in the error path.
Is your site exposed to CVE-2022-50754?
Run a free security scan — no signup, results in seconds.
References
Other References
https://git.kernel.org/stable/c/11d5fe7da67c3334cefc981297fd5defb78df15c
https://git.kernel.org/stable/c/3d27a436e294ac5d7a51bd5348ca63a42a468b35
https://git.kernel.org/stable/c/775a37ffa9f4681c4ad84c8634a7eec8af7098d4
https://git.kernel.org/stable/c/88989932c2269ea66074f52a6213598838f8b9e7
https://git.kernel.org/stable/c/935d86b29093e75b6c547d90b3979c2c2d23f1c4
https://git.kernel.org/stable/c/95e6adc6a7a4761ddf69ad713e55a06a3206309d
https://git.kernel.org/stable/c/c73275cf6834787ca090317f1d20dbfa3b7f05aa
https://git.kernel.org/stable/c/eb0f78e28cbc8f97439c0a4c80ee5160c1df5ce6
Frequently Asked Questions
What is CVE-2022-50754? +
In the Linux kernel, the following vulnerability has been resolved:
apparmor: fix a memleak in multi_transaction_new()
In multi_transaction_new(), the variable t is not freed or passed out
on the failure of copy_from_user(t->data, buf, size), which could lead
to a memleak.
Fix this bug by adding a put_multi_transaction(t) in the error path.
How do I check if I'm vulnerable to CVE-2022-50754? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.