George Kennedy

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a use-after-free vulnerability in the `vmci resource remove()` function. When removing a resource from `vmci resource table`, the search is performed using the resource handle by comparing context and resource fields. However, it is possible to create two resources with different types but the same handle, leading to a situation where the intended resource may not be removed, but the object will still be freed. This results in `vmci resource table` holding a pointer to the freed resource, causing a use-after-free vulnerability. The vulnerability can be exploited by creating two resources with different types but the same handle and then removing one of them. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.