A double-free flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user registers the device when the register_netdevice function fails (NETDEV_REGISTER notifier). This flaw allows a local user to crash or potentially escalate their privileges on the system.
[
{
"vendor": "n/a",
"product": "Kernel",
"versions": [
{
"version": "Linux kernel 5.16-rc7",
"status": "affected"
}
]
}
]