ALAS2KERNEL-5.10-2022-006 --- kernelID: oval:org.secpod.oval:def:1700835 | Date: (C)2022-02-01 (M)2024-04-17 |
Class: PATCH | Family: unix |
A flaw was found in the Linux kernel. When reusing a socket with an attached dccps_hc_tx_ccid as a listener, the socket will be used after being released leading to denial of service or a potential code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. A flaw was found in loop_rw_iter in fs/io_uring.c in the Linux kernel. This problem gives the ability to a local user with a normal user privilege to free a user-defined kernel space buffer
Product: |
kernel |
perf |
python-perf |
bpftool |