Race Condition in Linux Kernel's perf_event_open() Allows Privilege Escalation

Race Condition in Linux Kernel's perf_event_open() Allows Privilege Escalation

CVE-2022-1729 · HIGH Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

A race condition was found the Linux kernel in perf_event_open() which can be exploited by an unprivileged user to gain root privileges. The bug allows to build several exploit primitives such as kernel address information leak, arbitrary execution, etc.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.