all InfoSec news
CVE-2023-1872 (linux_kernel)
April 12, 2023, 4:15 p.m. |
National Vulnerability Database web.nvd.nist.gov
The io_file_get_fixed function lacks the presence of ctx->uring_lock which can lead to a Use-After-Free vulnerability due a race condition with fixed files getting unregistered.
We recommend upgrading past commit da24142b1ef9fd5d36b76e36bab328a5b27523e8.
ctx cve escalation exploited files free function kernel linux linux kernel local local privilege escalation privilege privilege escalation race condition system use-after-free vulnerability
More from web.nvd.nist.gov / National Vulnerability Database
CVE-2023-21380 (android)
6 months ago |
web.nvd.nist.gov
CVE-2023-21381 (android)
6 months ago |
web.nvd.nist.gov
Jobs in InfoSec / Cybersecurity
QA Customer Response Engineer
@ ORBCOMM | Sterling, VA Office, Sterling, VA, US
Enterprise Security Architect
@ Booz Allen Hamilton | USA, TX, San Antonio (3133 General Hudnell Dr) Client Site
DoD SkillBridge - Systems Security Engineer (Active Duty Military Only)
@ Sierra Nevada Corporation | Dayton, OH - OH OD1
Senior Development Security Analyst (REMOTE)
@ Oracle | United States
Software Engineer - Network Security
@ Cloudflare, Inc. | Remote
Software Engineer, Cryptography Services
@ Robinhood | Toronto, ON