CVE-2024-1312

CVSS 3.1 Score 4.7 of 10 (medium)

Details

Published Feb 8, 2024

Updated: Feb 15, 2024

CWE ID 416

Summary

CVE-2024-1312 is a use-after-free vulnerability identified in the Linux kernel's Memory Management subsystem. This issue arises when a user successfully executes two races at the same time, resulting in a failure in the mas_prev_slot function. Consequently, a local user can exploit this flaw to cause a system crash. This vulnerability poses a significant risk, particularly for Linux-based systems, and should be addressed promptly through appropriate patches or updates.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ub5xWz
https://www.cve.org/CVERecord?id=CVE-2024-1312
https://nvd.nist.gov/vuln/detail/CVE-2024-1312

Back to Vulnerability Database

CVE-2024-1312

CVSS 3.1 Score 4.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations