A use-after-free vulnerability in the Linux kernel's af_unix component can be exploited to achieve local privilege escalation. The unix_stream_sendpage() function tries to add data to the last skb in the peer's recv queue without locking the queue. Thus there is a race where unix_stream_sendpage() could access an skb locklessly that is being released by garbage collection, resulting in use-after-free. We recommend upgrading past commit 790c2f9d15b594350ae9bca7b236f2b1859de02c.

A use-after-free vulnerability in the Linux kernel's af_unix component ...

Security update for the Linux Kernel

Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP4)

Security update for the Linux Kernel (Live Patch 39 for SLE 15 SP1)

Security update for the Linux Kernel RT (Live Patch 6 for SLE 15 SP4)

Security update for the Linux Kernel

Security update for the Linux Kernel

Security update for the Linux Kernel

ELSA-2024-0461: kernel security update (IMPORTANT)

Security update for the Linux Kernel

Security update for the Linux Kernel

Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP4)

Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP4)

Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP5)

Security update for the Linux Kernel (Live Patch 31 for SLE 15 SP3)

Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP5)

Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP5)

Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP5)