ALAS2023-2023-160 --- kernelID: oval:org.secpod.oval:def:19500173 | Date: (C)2023-06-12 (M)2024-04-25 |
Class: PATCH | Family: unix |
A flaw was found in the Linux kernel Traffic Control subsystem. Using a specific networking configuration a local unprivileged user could trigger a CPU soft lockup when the transport protocol in use does a retransmission, resulting in a denial of service condition. A NULL pointer dereference has been discovered in the Linux Kernel, in io_file_bitmap_get in io_uring/filetable.c
Platform: |
Amazon Linux 2023 |
Product: |
kernel |
python3-perf |
bpftool |
perf |