Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:23902
HistoryApr 10, 2020 - 12:39 a.m.

Use-after-Free

2020-04-1000:39:32
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15

EPSS

0

Percentile

0.4%

The kernel package is vulnerable to Use-after-Free. A deficiency in the fasync_helper() implementation allows a local, unprivileged user to leverage a use-after-free of locked, asynchronous file descriptors to cause a denial of service or privilege escalation.

References