ALAS2LIVEPATCH-2021-034 --- kernel-livepatch-4.14.209-160.339ID: oval:org.secpod.oval:def:1700590 | Date: (C)2021-04-12 (M)2024-02-19 |
Class: PATCH | Family: unix |
A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24. A locking vulnerability was found in the tty subsystem of the Linux kernel in drivers/tty/tty_jobctrl.c. This flaw allows a local attacker to possibly corrupt memory or escalate privileges. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability
Product: |
kernel-livepatch-4.14.209-160.339 |