CVE-2022-49399: 
Linux Kernel vulnerability analysis and mitigation

CVE-2022-49399 affects the Linux kernel's goldfish TTY driver. The vulnerability was discovered in the handling of TTY port destruction, where ports initialized through ttyportinit() were not properly destroyed in error paths and during device removal. This issue was first disclosed on February 26, 2025 (NVD).

The vulnerability exists in the goldfish TTY driver where two specific code paths failed to properly clean up TTY ports: 1) In goldfishttyprobe() function, where ports initialized through ttyportinit() were not being destroyed in error paths, and 2) In goldfishttyremove() function, where qtty->port was not being destroyed, potentially leading to resource leaks. The fix involves adding proper calls to ttyportdestroy() in both locations (Kernel Commit).

The vulnerability could result in resource leaks in the Linux kernel when the goldfish TTY driver is used. This occurs specifically when the TTY device encounters errors during initialization or during device removal (NVD).

The issue has been fixed by implementing proper TTY port destruction through the addition of ttyportdestroy() calls in the affected code paths. The fix has been backported to multiple kernel versions, with Ubuntu 18.04 LTS (bionic) receiving the fix in version 4.15.0-192.203, and several other distributions also implementing the patch (Ubuntu).