CVE-2022-23090
Published Feb 15, 2024
Last updated 3 months ago
Overview
- Description
- The aio_aqueue function, used by the lio_listio system call, fails to release a reference to a credential in an error case. An attacker may cause the reference count to overflow, leading to a use after free (UAF).
- Source
- secteam@freebsd.org
- NVD status
- Awaiting Analysis
Weaknesses
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-416
Social media
- Hype score
- Not currently trending