摘要:
A use-after-free flaw was found in the add_partition in block/partitions/core.c in the Linux kernel. A local attacker with user privileges could cause a denial of service on the system. The issue results from the lack of code cleanup when device_add call fails when adding a partition to the disk.
安全等级: Low
公告ID: KylinSec-SA-2022-1414
发布日期: 2022年4月29日
关联CVE: CVE-2021-4150
A use-after-free flaw was found in the add_partition in block/partitions/core.c in the Linux kernel. A local attacker with user privileges could cause a denial of service on the system. The issue results from the lack of code cleanup when device_add call fails when adding a partition to the disk.
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2021-4150 | KY3.4-4A | kernel | Unaffected |
| CVE-2021-4150 | KY3.4-5 | kernel | Unaffected |
| CVE-2021-4150 | KY3.5.1 | kernel | Unaffected |
