Severity: Unknown
Affected Package: kernel
Summary: aio_aqueue() credential reference leak leading to use-after-free
The aio_aqueue() function failed to release a credential reference on an error path. Repeatedly triggering the error could overflow the reference count, leading to a use-after-free that a local user might leverage for privilege escalation.
No specific recommendations provided.
Aliases: CVE-2022-23090
Published: August 09, 2022
Last Modified: August 09, 2022