Описание
The mm_init function in kernel/fork.c in the Linux kernel before 4.12.10 does not clear the ->exe_file member of a new process's mm_struct, allowing a local attacker to achieve a use-after-free or possibly have unspecified other impact by running a specially crafted program.
Ссылки
- Issue TrackingPatch
- Third Party AdvisoryVDB Entry
- Patch
- Issue Tracking
- Issue TrackingPatch
- Third Party AdvisoryVDB Entry
- Patch
- Issue Tracking
Уязвимые конфигурации
Одно из
EPSS
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
Связанные уязвимости
The mm_init function in kernel/fork.c in the Linux kernel before 4.12.10 does not clear the ->exe_file member of a new process's mm_struct, allowing a local attacker to achieve a use-after-free or possibly have unspecified other impact by running a specially crafted program.
The mm_init function in kernel/fork.c in the Linux kernel before 4.12.10 does not clear the ->exe_file member of a new process's mm_struct, allowing a local attacker to achieve a use-after-free or possibly have unspecified other impact by running a specially crafted program.
The mm_init function in kernel/fork.c in the Linux kernel before 4.12. ...
The mm_init function in kernel/fork.c in the Linux kernel before 4.12.10 does not clear the ->exe_file member of a new process's mm_struct, allowing a local attacker to achieve a use-after-free or possibly have unspecified other impact by running a specially crafted program.
ELSA-2018-4062: Unbreakable Enterprise kernel security update (IMPORTANT)
EPSS
7.8 High
CVSS3
7.2 High
CVSS2