The block subsystem in the Linux kernel before 5.2 has a use-after-free that can lead to arbitrary code execution in the kernel context and privilege escalation, aka CID-c3e2219216c9. This is related to blk_mq_free_rqs and blk_cleanup_queue.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-05-14T22:57:29

Updated: 2024-08-05T03:00:18.847Z

Reserved: 2021-05-14T00:00:00

Link: CVE-2019-25044

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-05-14T23:15:07.507

Modified: 2024-11-21T04:39:48.930

Link: CVE-2019-25044

cve-icon Redhat

Severity : Important

Publid Date: 2019-06-06T00:00:00Z

Links: CVE-2019-25044 - Bugzilla