### [CVE-2017-15129](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15129)
![](https://img.shields.io/static/v1?label=Product&message=Linux%20kernel%20v4.0-rc1%20through%20v4.15-rc5&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20Linux%20kernel%20v4.0-rc1%20through%20v4.15-rc5%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-362&color=brighgreen)

### Description

A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function get_net_ns_by_id() in net/core/net_namespace.c does not check for the net::count value after it has found a peer network in netns_ids idr, which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/ARPSyndicate/cvemon