CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
5.0%
In the Linux kernel, the following vulnerability has been resolved:
filelock: fix potential use-after-free in posix_lock_inode
Light Hsieh reported a KASAN UAF warning in trace_posix_lock_inode().
The request pointer had been changed earlier to point to a lock entry
that was added to the inode’s list. However, before the tracepoint could
fire, another task raced in and freed that lock.
Fix this by moving the tracepoint inside the spinlock, which should
ensure that this doesn’t happen.
Vendor | Product | Version | CPE |
---|---|---|---|
linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"fs/locks.c"
],
"versions": [
{
"version": "117fb80cd1e6",
"lessThan": "1cbbb3d9475c",
"status": "affected",
"versionType": "git"
},
{
"version": "a6f4129378ca",
"lessThan": "7d4c14f4b511",
"status": "affected",
"versionType": "git"
},
{
"version": "766e56faddbe",
"lessThan": "02a896426075",
"status": "affected",
"versionType": "git"
},
{
"version": "34bff6d85001",
"lessThan": "5cb36e35bc10",
"status": "affected",
"versionType": "git"
},
{
"version": "74f6f5912693",
"lessThan": "432b06b69d1d",
"status": "affected",
"versionType": "git"
},
{
"version": "74f6f5912693",
"lessThan": "116599f6a269",
"status": "affected",
"versionType": "git"
},
{
"version": "74f6f5912693",
"lessThan": "1b3ec4f7c03d",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"fs/locks.c"
],
"versions": [
{
"version": "6.6",
"status": "affected"
},
{
"version": "0",
"lessThan": "6.6",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.4.280",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.10.222",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.15.163",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.1.100",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.41",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.9.10",
"lessThanOrEqual": "6.9.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.10",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]
git.kernel.org/stable/c/02a8964260756c70b20393ad4006948510ac9967
git.kernel.org/stable/c/116599f6a26906cf33f67975c59f0692ecf7e9b2
git.kernel.org/stable/c/1b3ec4f7c03d4b07bad70697d7e2f4088d2cfe92
git.kernel.org/stable/c/1cbbb3d9475c403ebedc327490c7c2b991398197
git.kernel.org/stable/c/432b06b69d1d354a171f7499141116536579eb6a
git.kernel.org/stable/c/5cb36e35bc10ea334810937990c2b9023dacb1b0
git.kernel.org/stable/c/7d4c14f4b511fd4c0dc788084ae59b4656ace58b