Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: sched/mmcid: Do not assume that a CID is owned by the CPU during mode switching. Shinichiro reported a KASAN UAF, which is actually an out-of-bounds access in the MMCID management code. CPU0 CPU1 T1 runs in userspace T0: forkT4 -...