Use-after-free vulnerability in Linux kernel through 4.14.13 allows for denial of service or other impact in drivers/block/loop.c

Use-after-free vulnerability in Linux kernel through 4.14.13 allows for denial of service or other impact in drivers/block/loop.c

CVE-2018-5344 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

In the Linux kernel through 4.14.13, drivers/block/loop.c mishandles lo_release serialization, which allows attackers to cause a denial of service (__lock_acquire use-after-free) or possibly have unspecified other impact.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.