Vincent DEHORS

1 exploit Active since Apr 2021
CVE-2021-3492 NOMISEC HIGH WORKING POC
Ubuntu Linux < 18.04 and < 20.10 - Use-After-Free in Shiftfs
Shiftfs, an out-of-tree stacking file system included in Ubuntu Linux kernels, did not properly handle faults occurring during copy_from_user() correctly. These could lead to either a double-free situation or memory not being freed at all. An attacker could use this to cause a denial of service (kernel memory exhaustion) or gain privileges via executing arbitrary code. AKA ZDI-CAN-13562.
42 stars
CVSS 8.8