A use-after-free flaw was found in the Linux kernel’s Ext4 File System in how a user triggers several file operations simultaneously with the overlay FS usage. This flaw allows a local user to crash or potentially escalate their privileges on the system. Only if patch 9a2544037600 (“ovl: fix use after free in struct ovl_aio_req”) not applied yet, the kernel could be affected.
CPE | Name | Operator | Version |
---|---|---|---|
linux_kernel | ge | 5.6 | |
linux_kernel | lt | 5.10.80 | |
linux_kernel | ge | 5.11 | |
linux_kernel | lt | 5.14.19 | |
linux_kernel | ge | 5.15 | |
linux_kernel | lt | 5.15.3 |