Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:39553
HistoryMar 06, 2023 - 8:47 p.m.

Privilege Escalation

2023-03-0620:47:17
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
27
linux
kernel
privilege escalation
alsa pcm
vulnerability
use-after-free
ring0

EPSS

0.001

Percentile

35.5%

Linux kernel is vulnerable to Privilege Escalation. The vulnerability exists in the ALSA PCM package because of the missing locks in the SNDRV_CTL_IOCTL_ELEM_{READ|WRITE}32, which leads to use-after-free, resulting in gaining access to ring0 from the system user