CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

0day.today•added 2023/09/04 12:0 a.m.•170 views

Linux 6.4 Use-After-Free / Race Condition Exploit

There is a race between mbind and VMA-locked page faults in the Linux 6.4 kernel, leading to a use-after-free condition. Linux 6.4: UAF race between mbind and VMA-locked page fault tested on git master, at commit 57012c57536f Summary: There's a race between mbind and VMA-locked page faults, leadi...

7.3AI score

Exploits0

Packet Storm•added 2023/09/04 12:0 a.m.•264 views

Linux 6.4 Use-After-Free / Race Condition

Linux 6.4: UAF race between mbind and VMA-locked page fault tested on git master, at commit 57012c57536f Summary: There's a race between mbind and VMA-locked page faults, leading to UAF. You can quickly hit this with a straightforward reproducer that just keeps calling mbind on one thread and...

7.1AI score

Exploits0

Microsoft CVE•added 2023/09/02 7:0 a.m.•4 views

Use after free race between mbind() and vma-locked page fault

...

7CVSS7.3AI score0.00019EPSS

Exploits1

OSV•added 2023/08/29 10:15 p.m.•2 views

AZL-28546 CVE-2023-4611 affecting package kernel for versions less than 5.15.135.1-2

A use-after-free flaw was found in mm/mempolicy.c in the memory management subsystem in the Linux Kernel. This issue is caused by a race between mbind and VMA-locked page fault, and may allow a local attacker to crash the system or lead to a kernel information leak...

6.3CVSS6.7AI score0.00019EPSS

Exploits1References1