Linux Kernel Memory Management Subsystem Use-After-Free Vulnerability

Linux Kernel Memory Management Subsystem Use-After-Free Vulnerability

CVE-2023-3269 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A vulnerability exists in the memory management subsystem of the Linux kernel. The lock handling for accessing and updating virtual memory areas (VMAs) is incorrect, leading to use-after-free problems. This issue can be successfully exploited to execute arbitrary kernel code, escalate containers, and gain root privileges.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.