#VU90200 Use-after-free in Linux kernel
Vulnerability identifier: #VU90200
Vulnerability risk: Low
CVSSv3.1: 7.7 [AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-416
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
Linux kernel
Operating systems & Components /
Operating system
Vendor: Linux Foundation
Description
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the bt_sock_recvmsg() and bt_sock_ioctl() functions in net/bluetooth/af_bluetooth.c. A local user can escalate privileges on the system.
Mitigation
Install update from vendor's website.
Vulnerable software versions
Linux kernel: All versions
External links
http://git.kernel.org/stable/c/cb8adca52f306563d958a863bb0cbae9c184d1ae
http://git.kernel.org/stable/c/64be3c6154886200708da0dfe259705fb992416c
http://git.kernel.org/stable/c/817e8138ce86001b2fa5c63d6ede756e205a01f7
http://git.kernel.org/stable/c/2c9e2df022ef8b9d7fac58a04a2ef4ed25288955
http://git.kernel.org/stable/c/f7b94bdc1ec107c92262716b073b3e816d4784fb
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
