Double-Free Vulnerability in idr_remove_all() in Linux Kernel 2.6 Branch

Double-Free Vulnerability in idr_remove_all() in Linux Kernel 2.6 Branch

CVE-2019-3896 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

A double-free can happen in idr_remove_all() in lib/idr.c in the Linux kernel 2.6 branch. An unprivileged local attacker can use this flaw for a privilege escalation or for a system crash and a denial of service (DoS).

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.