Описание
A use-after-free vulnerability in the Linux kernel's ipv4: igmp component can be exploited to achieve local privilege escalation.
A race condition can be exploited to cause a timer be mistakenly registered on a RCU read locked object which is freed by another thread.
We recommend upgrading past commit e2b706c691905fe78468c361aaabc719d0a496f1.
Ссылки
- Mailing ListPatch
- Patch
- Mailing ListPatch
- Patch
Уязвимые конфигурации
EPSS
7.8 High
CVSS3
7 High
CVSS3
Дефекты
Связанные уязвимости
A use-after-free vulnerability in the Linux kernel's ipv4: igmp component can be exploited to achieve local privilege escalation. A race condition can be exploited to cause a timer be mistakenly registered on a RCU read locked object which is freed by another thread. We recommend upgrading past commit e2b706c691905fe78468c361aaabc719d0a496f1.
A use-after-free vulnerability in the Linux kernel's ipv4: igmp component can be exploited to achieve local privilege escalation. A race condition can be exploited to cause a timer be mistakenly registered on a RCU read locked object which is freed by another thread. We recommend upgrading past commit e2b706c691905fe78468c361aaabc719d0a496f1.
A use-after-free vulnerability in the Linux kernel's ipv4: igmp compon ...
Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP4)
EPSS
7.8 High
CVSS3
7 High
CVSS3