2 matches found
kernel: race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c leads to use-after-free
A flaw was found in the Linux kernel’s implementation of the SAS expander subsystem, where a race condition exists in the smptasktimedout and smptaskdone in drivers/scsi/libsas/sasexpander.c. An attacker could abuse this flaw to corrupt memory and escalate privileges...
The vulnerabilities of the functions smp_task_timedout() and smp_task_done() in the Linux kernel’s drivers/scsi/libsas/sas_expander.c file allow attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerabilities of the functions smptasktimedout and smptaskdone in the Linux kernel’s drivers/scsi/libsas/sasexpander.c file are related to synchronization errors when using shared resources. Exploiting these vulnerabilities can allow an attacker to compromise the confidentiality, integrity,...