A use-after-free flaw was found in vmxnet3_rq_alloc_rx_buf in drivers/net/vmxnet3/vmxnet3_drv.c in VMware's vmxnet3 ethernet NIC driver in the Linux Kernel. This issue could allow a local attacker to crash the system due to a double-free while cleaning up vmxnet3_rq_cleanup_all, which could also lead to a kernel information leak problem.
2023-08-16T19:15:10.087
2025-06-03T03:15:25.913
Modified
CVSSv3.1: 7.1 (HIGH)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | linux | linux_kernel | < 3.17 | Yes |
| Operating System | linux | linux_kernel | < 4.9.316 | Yes |
| Operating System | linux | linux_kernel | < 4.14.281 | Yes |
| Operating System | linux | linux_kernel | < 4.19.245 | Yes |
| Operating System | linux | linux_kernel | < 5.4.196 | Yes |
| Operating System | linux | linux_kernel | < 5.10.118 | Yes |
| Operating System | linux | linux_kernel | < 5.15.42 | Yes |
| Operating System | linux | linux_kernel | < 5.17.10 | Yes |
| Operating System | redhat | enterprise_linux | 6.0 | Yes |
| Operating System | redhat | enterprise_linux | 7.0 | Yes |
| Operating System | redhat | enterprise_linux | 8.0 | Yes |
| Operating System | redhat | enterprise_linux | 9.0 | Yes |