Note:
This project will be discontinued after December 13, 2021. [more]
2020-06-18
In the Linux kernel before 5.4.16, a race condition in tty->disc_data handling in the slip and slcan line discipline could lead to a use-after-free, aka CID-0ace17d56824. This affects drivers/net/slip/slip.c and drivers/net/can/slcan.c.
| Products | Linux_kernel, Leap |
| Type | Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') (CWE-362) Use After Free (CWE-416) |
| First patch | - None (likely due to unavailable code) |
| Patches | https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0ace17d56824165c7f4c68785d6b58971db954dd |
| Links |
• http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00009.html
• https://bugzilla.suse.com/show_bug.cgi?id=1162002 • http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00008.html • https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.16 |