Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
A use-after-free vulnerability in the Linux Kernel traffic control index filter (tcindex) can be exploited to achieve local privilege escalation. The tcindex_delete function which does not properly deactivate filters in case of a perfect hashes while deleting the underlying structure which can later lead to double freeing the structure. A local attacker user can use this vulnerability to elevate its privileges to root.We recommend upgrading past commit 8c710f75256bb3cf05ac7b1672c82b92c43f3d28.
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=8c710f75256bb3cf05ac7b1672c82b92c43f3d28
- https://github.com/0xor0ne/awesome-list
- https://github.com/EGI-Federation/SVG-advisories
- https://github.com/Jalexander798/JA_Tools-Cybersecurity-Resource-2
- https://github.com/N1ghtu/RWCTF6th-RIPTC
- https://github.com/Threekiii/CVE
- https://github.com/bachkhoasoft/awesome-list-ks
- https://github.com/bygregonline/devsec-fastapi-report
- https://github.com/cvestone/CtfCollections
- https://github.com/lanleft/CVE-2023-1829
- https://github.com/lanleft/CVE2023-1829
- https://github.com/nightuhu/RWCTF6th-RIPTC
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/star-sg/CVE
- https://github.com/vincentwu8/CtfCollections
- https://github.com/xairy/linux-kernel-exploitation