Vulnerabilities

CVE-2021-43057

by Fred · 27/10/2021

An issue was discovered in the Linux kernel before 5.14.8. A use-after-free in selinux_ptrace_traceme (aka the SELinux handler for PTRACE_TRACEME) could be used by local attackers to cause memory corruption and escalate privileges, aka CID-a3727a8bac0a. This occurs because of an attempt to access the subjective credentials of another task.

Date published : 2021-10-27

https://bugs.chromium.org/p/project-zero/issues/detail?id=2229

https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.14.8

Related

Tags: Cybersecurity Alert