2 matches found
kernel: wifi: fix potential NULL-ptr deref after clone
A flaw was found in the Linux kernel’s iwlwifi mei driver. When the driver attempts to clone a socket bufferand that operation fails, it may erroneously dereference a NULL pointer, leading to a kernel crash or denial of service. An unprivileged local user may be able to trigger this flaw by...
kernel: Memory corruption due to incorrect socket cloning
A possible memory corruption due to a type confusion was found in the Linux kernel in the skclonelock function in the net/core/sock.c. The possibility of local escalation of privileges cannot be fully ruled out for a local unprivileged attacker...