Ubuntu Security Notice USN-5130-1

Discussion in 'News Aggregator' started by Packet Storm, 10 Nov 2021.

  1. Packet Storm

    Packet Storm Guest

    Ubuntu Security Notice 5130-1 - Jann Horn discovered a race condition in the tty subsystem of the Linux kernel in the locking for the TIOCSPGRP ioctl, leading to a use-after- free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Jann Horn discovered that the tty subsystem of the Linux kernel did not use consistent locking in some situations, leading to a read-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly expose sensitive information. Various other issues were also addressed.

    Continue reading...
     

Share This Page

Loading...