3 matches found
BELL-CVE-2026-23014
Bulletin has no description...
CVE-2026-23014
A use-after-free vulnerability was found in the Linux kernel's perf subsystem. When freeing a software event swevent, the hrtimer used for sampling may still be active because perfsweventcancelhrtimer uses hrtimertrytocancel which can fail if the timer is currently executing. This leaves a dangli...
CVE-2026-23014
In the Linux kernel, the following vulnerability has been resolved: perf: Ensure swevent hrtimer is properly destroyed With the change to hrtimertrytocancel in perfsweventcancelhrtimer it appears possible for the hrtimer to still be active by the time the event gets freed. Make sure the event doe...