Vulnerabilities > CVE-2023-0468 - Use After Free vulnerability in Linux Kernel

047910
CVSS 4.7 - MEDIUM
Attack vector
LOCAL
Attack complexity
HIGH
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
high complexity
linux
CWE-416
NVD
Published: 2023-01-26
Updated: 2024-11-21

Summary

A use-after-free flaw was found in io_uring/poll.c in io_poll_check_events in the io_uring subcomponent in the Linux Kernel due to a race condition of poll_refs. This flaw may cause a NULL pointer dereference.

Vulnerable Configurations

Part Description Count
OS
Linux
5295

Common Weakness Enumeration (CWE)

References