Back to search
CVE-2015-7312
Published: Nov 16, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
Multiple race conditions in the Advanced Union Filesystem (aufs) aufs3-mmap.patch and aufs4-mmap.patch patches for the Linux kernel 3.x and 4.x allow local users to cause a denial of service (use-after-free and BUG) or possibly gain privileges via a (1) madvise or (2) msync system call, related to mm/madvise.c and mm/msync.c.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
DSA-3364
vendor-advisory
x_refsource_DEBIAN
[aufs] 20150910 Re: concurrent msync triggers NULL pointer dereference
mailing-list
x_refsource_MLIST
[oss-security] 20150922 Re: CVE request: Use-after-free in Linux kernel with aufs mmap patch
mailing-list
x_refsource_MLIST
USN-2777-1
vendor-advisory
x_refsource_UBUNTU
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now