Use-After-Free Memory Flaw in Linux Kernel's Perf Subsystem Allows Privilege Escalation

Use-After-Free Memory Flaw in Linux Kernel's Perf Subsystem Allows Privilege Escalation

CVE-2020-14351 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A flaw was found in the Linux kernel. A use-after-free memory flaw was found in the perf subsystem allowing a local attacker with permission to monitor perf events to corrupt memory and possibly escalate privileges. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.