Vulnerability Details : CVE-2023-35825
An issue was discovered in the Linux kernel before 6.3.4. A use-after-free was found in r592_remove in drivers/memstick/host/r592.c.
Vulnerability category: Memory Corruption
Products affected by CVE-2023-35825
We don't have affected product information for this CVE yet
Exploit prediction scoring system (EPSS) score for CVE-2023-35825
We don't have an EPSS score for this CVE yet
References for CVE-2023-35825
-
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=63264422785021704c39b38f65a78ab9e4a186d7
kernel/git/torvalds/linux.git - Linux kernel source tree
-
https://lore.kernel.org/lkml/20230501030540.3254928-4-sashal@kernel.org/
[PATCH AUTOSEL 5.10 04/12] memstick: r592: Fix UAF bug in r592_remove due to race condition - Sasha Levin
-
https://lore.kernel.org/all/20230523164950.435226211@linuxfoundation.org/
[PATCH 6.3 000/363] 6.3.4-rc2 review - Greg Kroah-Hartman
-
https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.3.4
Jump to