Volerion logoVolerion
Volerion logoVolerion

Linux Kernel UAF Vulnerability in DM Clone Target

Vulnerability

A use-after-free vulnerability has been identified in the Linux kernel's DM (Device Mapper) clone target, specifically in the clone_dtr() function. This vulnerability arises when the dm_resume() and dm_destroy() functions are executed concurrently, leading to a race condition. The issue has been addressed by modifying the clone_dtr() function to cancel a timer, thereby preventing the use-after-free condition.

Impact

Exploitation of this vulnerability could lead to a use-after-free condition, which may be exploited to execute arbitrary code or cause a denial-of-service condition by crashing the system.

Reproduction

The vulnerability can be reproduced by creating a scenario where the dm_resume() and dm_destroy() functions are called at the same time, causing a race condition that the use-after-free vulnerability exploits.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed.

Added: Dec 30, 2025, 5:26 PM
Updated: Dec 30, 2025, 5:26 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
0.6
exploitability
3.9
remediation
7.7
relevance
1.8
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.