In the Linux kernel, the following vulnerability has been resolved: crypto: algif_hash - fix double free in hash_accept If accept(2) is called on socket type algif_hash with MSG_MORE flag set and crypto_ahash_import fails, sk2 is freed. However, it is also freed in af_alg_release, leading to slab-use-after-free error.
| Product | Vendor | Version |
|---|---|---|
| Linux | Linux | 16.3.4 |
| Linux | Linux | 16.3.5 |
| Linux | Linux | Versions earlier than 9.1.0.328(C185E1R1P9T8) |
| Linux | Linux | Versions earlier than 9.1.0.311(C185E3R3P1) |