A use-after-free vulnerability was found in the cxgb4...
Moderate severity
Unreviewed
Published
Aug 3, 2023
to the GitHub Advisory Database
•
Updated Apr 30, 2024
Description
Published by the National Vulnerability Database
Aug 3, 2023
Published to the GitHub Advisory Database
Aug 3, 2023
Last updated
Apr 30, 2024
A use-after-free vulnerability was found in the cxgb4 driver in the Linux kernel. The bug occurs when the cxgb4 device is detaching due to a possible rearming of the flower_stats_timer from the work queue. This flaw allows a local user to crash the system, causing a denial of service condition.
References