[SRU OEM-5.17,OEM-6.0 0/1] CVE-2023-2235
Thadeu Lima de Souza Cascardo
cascardo at canonical.com
Fri Aug 4 11:58:42 UTC 2023
[Impact]
It was discovered that the perf subsystem in the Linux kernel contained a
use-after-free vulnerability. A privileged local attacker could possibly
use this to cause a denial of service (system crash) or possibly execute
arbitrary code.
[Potential regression]
Users of perf may notice regressions.
Budimir Markovic (1):
perf: Fix check before add_event_to_groups() in perf_group_detach()
kernel/events/core.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
--
2.34.1
More information about the kernel-team
mailing list