4 matches found
kernel: sg_write function lacks an sg_remove_request call in a certain failure case
A vulnerability was found in sgwrite in drivers/scsi/sg.c in the SCSI generic sg driver subsystem. This flaw allows an attacker with local access and special user or root privileges to cause a denial of service if the allocated list is not cleaned with an invalid Sgfd sfp pointer at the time of...
kernel: sg_write function lacks an sg_remove_request call in a certain failure case
A vulnerability was found in sgwrite in drivers/scsi/sg.c in the SCSI generic sg driver subsystem. This flaw allows an attacker with local access and special user or root privileges to cause a denial of service if the allocated list is not cleaned with an invalid Sgfd sfp pointer at the time of...
The vulnerability of the sg_write function in Linux operating system kernels, allowing a hacker to execute arbitrary code
The vulnerability of the sgwrite function in Linux operating system kernels is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
PT-2020-2429 · Linux +7 · Linux Kernel +7
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.6.11 Description: The issue is related to the sg write function in the Linux kernel, which is associated with a use-after-free memory vulnerability. This could potentially allow an attacker to execute arbitrar...