ALAS2KERNEL-5.4-2022-026 --- kernelID: oval:org.secpod.oval:def:1700931 | Date: (C)2022-06-14 (M)2024-05-05 |
Class: PATCH | Family: unix |
A kernel information leak flaw was identified in the scsi_ioctl function in drivers/scsi/scsi_ioctl.c in the Linux kernel. This flaw allows a local attacker with a special user privilege to create issues with confidentiality. A memory leak flaw was found in the Linux kernel's DMA subsystem, in the way a user calls DMA_FROM_DEVICE. This flaw allows a local user to read random memory from the kernel space. perf: Fix sys_perf_event_open race against self floppy: disable FDRAWCMD by default The SUNRPC subsystem in the Linux kernel through 5.17.2 can call xs_xprt_free before ensuring that sockets are in the intended state. Improper Update of Reference Count vulnerability in net/sched of Linux Kernel allows local attacker to cause privilege escalation to root. This issue affects: Linux Kernel versions prior to 5.18; version 4.14 and later versions
Product: |
kernel |
perf |
python-perf |
bpftool |