What the vulnerability does

01Description

A flaw was found in the Linux kernel’s implementation of IO-URING. This flaw allows an attacker with local executable permission to create a string of requests that can cause a use-after-free flaw within the kernel. This issue leads to memory corruption and possible privilege escalation.

Key dates

02Disclosure timeline

August 31, 2022 CVE published
August 3, 2024 Record updated