logo

CVE-2023-0266 - Linux Kernel Use-After-Free Vulnerability

CVE-2023-0266

Linux | Kernel

  • Date Added:
  • 2023-03-30
  • Due Date:
  • 2023-04-20
Vulnerability Name

Linux Kernel Use-After-Free Vulnerability

Description

Linux kernel contains a use-after-free vulnerability that allows for privilege escalation to gain ring0 access from the system user.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes
https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-5.10/alsa-pcm-move-rwsem-lock-inside-snd_ctl_elem_read-to-prevent-uaf.patch?id=72783cf35e6c55bca84c4bb7b776c58152856fd4; https://nvd.nist.gov/vuln/detail/CVE-2023-0266

Free security scan for your website