Vulnerabilities

CVE-2017-11176

by Fred · 11/07/2017

The mq_notify function in the Linux kernel through 4.11.9 does not set the sock pointer to NULL upon entry into the retry logic. During a user-space close of a Netlink socket, it allows attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact.

Date published : 2017-07-11

http://www.securityfocus.com/bid/99919

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f991af3daabaecff34684fd51fac80319d1baad1

Similar

Tags: Cybersecurity Alert