SUSE CVE-2023-2235
A use-after-free vulnerability in the Linux Kernel Performance Events system can be exploited to achieve local privilege escalation. The perfgroupdetach function did not check the event's siblings' attachstate before calling addeventtogroups, but removeonexec made it possible to call listdelevent...