UAF in all Linux kernels before 2/17/2017, but upgrading kernels is easier said than done for 99.9% of prod envs:
seclists.org/oss-sec/2017/q1…
4
20
3
26
pointless when stuff like __ro_after_init and now refcount_t can go in despite being bad engineering...
1
1
i did discuss those two (mis)features at the time to no avail. guess we just have different standards ;).
Feb 27, 2017 · 10:19 PM UTC