4 matches found
CVE-2022-44034
The CVE-2022-44034 issue affects the Linux kernel (through 6.0.6) in the PCMCIA driver path, specifically drivers/char/pcmcia/scr24x_cs.c, where a race between scr24x_open() and scr24x_remove() can cause a use-after-free if a physically proximate attacker removes a PCMCIA device while open() is i...
CVE-2022-44033
CVE-2022-44033 affects the Linux kernel up to version 6.0.6, where a race condition in drivers/char/pcmcia/cm4040_cs.c can cause a use-after-free if a physically proximate attacker removes a PCMCIA device while open. The issue is described as a race between cm4040_open() and reader_detach(). The ...
CVE-2022-44032
CVE-2022-44032 affects the Linux kernel up to 6.0.6. The race between cmm_open() and cm4000_detach() in drivers/char/pcmcia/cm4000_cs.c can cause a use-after-free when a PCMCIA device is physically removed while open, enabling a physically proximate attacker to trigger memory corruption. The CVSS...
CVE-2025-38471
CVE-2025-38471 affects the Linux kernel TLS path. A bug in TLS where the code may operate on an old skb during queue decrypt-state checks can lead to a use-after-free (observed in tls_strp_check_rcv). The issue arises after net-next TCP changes that compact skbs more aggressively, triggering the ...