Use-After-Free Vulnerability in iscsi_sw_tcp_session_create in Linux Kernel Allows Information Leakage

Use-After-Free Vulnerability in iscsi_sw_tcp_session_create in Linux Kernel Allows Information Leakage

CVE-2023-2162 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

A use-after-free vulnerability was found in iscsi_sw_tcp_session_create in drivers/scsi/iscsi_tcp.c in SCSI sub-component in the Linux Kernel. In this flaw an attacker could leak kernel internal information.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.