CVE-2022-29582
CVSS v3.1
7 (High)
CVSS v2.0
6.9 (Medium)
EPSS
0.04 % (5th)
Affected Products
2
Advisories
8
NVD Status
Modified
In the Linux kernel before 5.17.3, fs/io_uring.c has a use-after-free due to a race condition in io_uring timeouts. This can be triggered by a local user who has no access to any user namespace; however, the race condition perhaps can only be exploited infrequently.
Weaknesses
- CWE-362
- Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
- CVE Status
- PUBLISHED
- NVD Status
- Modified
- CNA
- MITRE
- Published Date
-
2022-04-22 16:15:09
(2 years ago) - Updated Date
-
2024-05-01 18:15:09
(4 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...