What the vulnerability does

01Description

A use-after-free flaw was found in the Linux kernel’s core dump subsystem. This flaw allows a local user to crash the system. Only if patch 390031c94211 ("coredump: Use the vma snapshot in fill_files_note") not applied yet, then kernel could be affected.

Key dates

02Disclosure timeline

March 23, 2023 CVE published
March 19, 2025 Record updated