The short story of 1 Linux Kernel Use-After-Free bug and 2 CVEs (CVE-2020-14356 and CVE-2020-25220) Name:     Linux kernel Cgroup BPF Use-After-FreeAuthor:   Adam Zabrocki (pi3@pi3.com.pl)Date:       May 27, 2020 First things first – short history: In 2019 Tejun Heo discovered a racing problem with lifetime of the cgroup_bpf which could result in double-free and other memory corruptions. … Continue reading CVE: 2020-14356 & 2020-25220