Acknowledged
Created: Oct 30, 2022
Updated: Oct 31, 2022
Found In Version: 10.21.20.1
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel
An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/cm4000_cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open(), aka a race condition between cmm_open() and cm4000_detach().
CREATE(Triage):(User=admin) CVE-2022-44032 (https://nvd.nist.gov/vuln/detail/CVE-2022-44032)
