A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "7338913957767132237580945162545283902", "276140429312739768394680534261795675580", "203989765631513543784047101143447013562", "144040697814404936400616784663233098827", "219487244008294298156309541912615923617", "121723368273225809510853011269019301423", "43185897151191301020763260751502390130" ] }, "signature_version": "v1", "signature_type": "Line", "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@54ffccbf053b5b6ca4f6e45094b942fab92a25fc", "id": "CVE-2020-29661-f68a521f", "target": { "file": "drivers/tty/tty_jobctrl.c" } } ] }