Use After Free Vulnerability in aio_aqueue Function

Use After Free Vulnerability in aio_aqueue Function

CVE-2022-23090 · Severity

The aio_aqueue function, used by the lio_listio system call, fails to release a reference to a credential in an error case. An attacker may cause the reference count to overflow, leading to a use after free (UAF).

Learn more about our Web Application Penetration Testing UK.