drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating raw_cmd in the raw_cmd_ioctl function. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available.
Denial Of Service
Memory Corruption
Use After Free
Linux
Linux Kernel
+1
NVD
GitHub
CVSS 3.1
3.3
EPSS
0.5%