Rewterz Threat Alert – Happy New Year Phishing Emails
January 4, 2021Rewterz Threat Alert – AZORult Latest IOCs
January 5, 2021Rewterz Threat Alert – Happy New Year Phishing Emails
January 4, 2021Rewterz Threat Alert – AZORult Latest IOCs
January 5, 2021Severity
High
Analysis Summary
Linux Kernel could allow a local authenticated attacker to gain elevated privileges on the system, caused by an use-after-free flaw in the handling of file descriptors in io_uring. By sending a specially-crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges and execute arbitrary code in the context of the kernel.
Impact
Privilege escalation
Affected Vendors
Linux
Affected Products
Linux Kernel 5.10
Remediation
Upgrade to the latest version of Linux Kernel (5.10.2 or later)