CVE-2023-39198
CVSS v3.1
6.4 (Medium)
EPSS
0.37 % (73th)
Affected Products
3
Advisories
35
NVD Status
Modified
A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.
Weaknesses
- CWE-416
- Use After Free
- CVE Status
- PUBLISHED
- NVD Status
- Modified
- CNA
- Red Hat, Inc.
- Published Date
-
2023-11-09 20:15:08
(10 months ago) - Updated Date
-
2024-09-13 19:15:13
(2 days ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...