ALAS2KERNEL-5.4-2022-008 --- kernelID: oval:org.secpod.oval:def:1700821 | Date: (C)2022-02-01 (M)2024-04-17 |
Class: PATCH | Family: unix |
A flaw was found in the Linux kernel. When reusing a socket with an attached dccps_hc_tx_ccid as a listener, the socket will be used after being released leading to denial of service or a potential code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. A vulnerability was found in the Linux kernel. Missing size validations on inbound SCTP packets may allow the kernel to read uninitialized memory
Product: |
kernel |
perf |
python-perf |
bpftool |