Bug 2225569 (CVE-2024-1312) - CVE-2024-1312 kernel: Race condition leads to use after free during VMA lock in lock_vma_under_rcu
Summary: CVE-2024-1312 kernel: Race condition leads to use after free during VMA lock ...
Keywords:
Status: NEW
Alias: CVE-2024-1312
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Nobody
QA Contact:
URL:
Whiteboard:
Depends On: 2225582 2225583 2230004 2230005 2230006 2230007 2230008 2230009 2263204
Blocks: 2225571
TreeView+ depends on / blocked
 
Reported: 2023-07-25 13:59 UTC by Pedro Sampaio
Modified: 2024-10-12 08:27 UTC (History)
59 users (show)

Fixed In Version: kernel 6.5-rc4
Doc Type: If docs needed, set a value
Doc Text:
A use-after-free flaw was found in the Linux kernel's Memory Management subsystem when a user wins two races at the same time with a fail in the mas_prev_slot function. This issue could allow a local user to crash the system.
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)

Description Pedro Sampaio 2023-07-25 13:59:17 UTC
A race condition during lock_vma_under_rcu() may lead to a use after free issue.

Comment 9 Alex 2024-02-07 14:51:56 UTC
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 2263204]

Comment 10 Justin M. Forbes 2024-02-07 22:10:23 UTC
This was fixed for Fedora with the 6.4.10 stable kernel updates


Note You need to log in before you can comment on or make changes to this bug.