6 matches found
Oracle Linux 9 : kernel (ELSA-2026-3966)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-3966 advisory. - mlxsw: spectrummr: Fix use-after-free when updating multicast route stats CKI Backport Bot RHEL-143194 CVE-2025-68800 - iouring: fix use-after-free o...
ALSA-2026:3966 Moderate: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel iouring: Local privilege escalation, information disclosure, or denial of service via use-after-free CVE-2025-38106 kernel: macvlan: fix possible UAF in macvlanforwardsource...
CVE-2025-38106
In the Linux kernel, the following vulnerability has been resolved: iouring: fix use-after-free of sq-thread in iouringshowfdinfo syzbot reports: BUG: KASAN: slab-use-after-free in getrusage+0x1109/0x1a60 Read of size 8 at addr ffff88810de2d2c8 by task a.out/304 CPU: 0 UID: 0 PID: 304 Comm: a.out...
CVE-2025-38106 io_uring: fix use-after-free of sq->thread in __io_uring_show_fdinfo()
In the Linux kernel, the following vulnerability has been resolved: iouring: fix use-after-free of sq-thread in iouringshowfdinfo syzbot reports: BUG: KASAN: slab-use-after-free in getrusage+0x1109/0x1a60 Read of size 8 at addr ffff88810de2d2c8 by task a.out/304 CPU: 0 UID: 0 PID: 304 Comm: a.out...
CVE-2022-2602
iouring UAF, Unix SCM garbage collection...
CVE-2022-3910 Use after free in IO_uring in the Linux Kernel
Use After Free vulnerability in Linux Kernel allows Privilege Escalation. An improper Update of Reference Count in iouring leads to Use-After-Free and Local Privilege Escalation. When iomsgring was invoked with a fixed file, it called iofputfile which improperly decreased its reference count...