2 matches found
CVE-2025-1290
A race condition Use-After-Free vulnerability exists in the virtiotransportspaceupdate function within the Kernel 5.4 on ChromeOS. Concurrent allocation and freeing of the virtiovsocksock structure during an AFVSOCK connect syscall can occur before a worker thread accesses it resulting in a...
PT-2025-16924 · Google · Kernel
Name of the Vulnerable Software and Affected Versions: ChromeOS Kernel versions prior to 6.1 ChromeOS Kernel version 5.4 Description: A race condition Use-After-Free vulnerability exists in the virtio transport space update function. Concurrent allocation and freeing of the virtio vsock sock...