CVE-2024-43102

Name of the Vulnerable Software and Affected Versions FreeBSD (affected versions not specified)

Description The issue is related to a use-after-free vulnerability in the UMTX OP SHM operation's handling of anonymous shared memory used for process-shared mutexes. Concurrent removals of certain anonymous shared memory mappings by using the UMTX SHM DESTROY sub-request of UMTX OP SHM can lead to decreasing the reference count of the object representing the mapping too many times, causing it to be freed too early. A malicious code exercising the UMTX SHM DESTROY sub-request in parallel can panic the kernel or enable further use-after-free attacks, potentially including code execution or Capsicum sandbox escape.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.