EPSS
Percentile
5.1%
An issue was discovered in GNU Hurd before 0.9 20210404-9. libports accepts fake notification messages from any client on any port, which can lead to port use-after-free. This can be exploited for local privilege escalation to get full root access.
lists.gnu.org/archive/html/bug-hurd/2021-05/msg00079.html
www.mail-archive.com/bug-hurd%40gnu.org/msg32116.html