Description


A use-after-free flaw was found in io_uring/poll.c in io_poll_check_events in the io_uring subcomponent in the Linux Kernel due to a race condition of poll_refs. This flaw may cause a NULL pointer dereference.

Related CPE's


o

linux

linux_kernel

8

References


https://bugzilla.redhat.com/show_bug.cgi?id=2164024

ExploitIssue TrackingPatchThird Party Advisory

Weaknesses



CWE-416

CVSS impact metrics


CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

4.7 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information


Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2023-01-26T21:18:09.347

2 years ago

Last modified

2023-02-01T15:59:27.927

2 years ago