Skip to main content


 

Linux Kernel Through 4.20.10 Found Vulnerable to Arbitrary Code Execution


Published Date: 02/18/2019 Last Modified Date: 02/19/2019 In the Linux kernel through 4.20.10, af_alg_release() in crypto/af_alg.c neglects to set a NULL value for a certain structure member, which…
Article word count: 49

HN Discussion: https://news.ycombinator.com/item?id=19210727
Posted by robin0 (karma: 71)
Post stats: Points: 125 - Comments: 72 - 2019-02-20T18:46:34Z

#HackerNews #42010 #arbitrary #code #execution #found #kernel #linux #through #vulnerable
Article content:



* Published Date: 02/18/2019
 * Last Modified Date: 02/19/2019

In the Linux kernel through 4.20.10, af_alg_release() in crypto/af_alg.c neglects to set a NULL value for a certain structure member, which leads to a use-after-free in sockfs_setattr.

Note: This page is generated by our securitybot and has not been checked for errors.

HackerNewsBot debug: Calculated post rank: 107 - Loop: 112 - Rank min: 100 - Author rank: 59