sound/core/timer.c in the Linux kernel before 4.4.1...
Moderate severity
Unreviewed
Published
May 17, 2022
to the GitHub Advisory Database
•
Updated Feb 3, 2023
Description
Published by the National Vulnerability Database
Apr 27, 2016
Published to the GitHub Advisory Database
May 17, 2022
Last updated
Feb 3, 2023
sound/core/timer.c in the Linux kernel before 4.4.1 employs a locking approach that does not consider slave timer instances, which allows local users to cause a denial of service (race condition, use-after-free, and system crash) via a crafted ioctl call.
References