readykernel-patch-200.7-169.0-1.vl7

Use-after-free vulnerability in a nf_tables component can be exploited to achieve local privilege escalation.

A use-after-free vulnerability in the Netfilter subsystem when processing batch requests to update nf_tables configuration. This vulnerability can be abused to perform arbitrary reads and writes in kernel memory. A local user (with CAP_NET_ADMIN capability) could use this flaw to crash the system or potentially escalate their privileges on the system.

A use-after-free vulnerability possible local privilege escalation.

Use after free in rsvp classifier can be used to crash kernel.

Possible kernel crash if userspace provide special data for ipset module.

Due to a race condition counters in /proc/net/dev periodically deviate significantly either up or down.

A use-after-free vulnerability in the quota mechanism, leading to a denial of service.

An integer coercion error in the openvswitch kernel module potentially leading to an out-of-bounds write access. This flaw allows a local user to crash or potentially escalate their privileges on the system.

A memory leak in the IPv6 functionality. This flaw allows a user to crash the system.

A vulnerability in the tcp subsystem. This issue could allow an attacker to leak internal kernel information.

A firewall flaw that can bypass the Netfilter functionality. This flaw allows a remote user to gain unauthorized access to the system.

A vulnerability in the Netronome Flow Processor (NFP) driver. This flaw allows a manipulation that may lead to a use-after-free issue.

A use-after-free vulnerability the NFS filesystem. This flaw allows an attacker to conduct a remote denial of service.

An information leak flaw in NFS over RDMA. This flaw allows an attacker with normal user privileges to leak kernel information.

A flaw in the NFS filesystem. This flaw leads to the kernel's data leak into the userspace.

A NULL pointer dereference in the net SLIP driver. This issue could allow an attacker to crash the system or leak internal kernel information.

A use-after-free in the virtio network subcomponent. This issue could allow a local attacker to crash the system, and could lead to a kernel information leak problem.

A use-after-free in the network subcomponent. This flaw allows a local attacker to crash the system, cause a privilege escalation, and leak kernel information.

A speculative pointer dereference vulnerabilty that can be used to leak the contents.

An out-of-bounds memory access flaw in the XFS file system in how a user restores an XFS image after failure (with a dirty log journal). This flaw allows a local user to crash or potentially escalate their privileges on the system.

A use-after-free in the SCSI sub-component. This issue could allow an attacker to leak kernel internal information.

An out-of-bounds memory access flaw in the traffic control (QoS) subsystem. This flaw allows a local user to crash or potentially escalate their privileges on the system.

A use-after-free vulnerability in the ext4 filesystem in the way it handled the extra inode size for extended attributes. This flaw allows a privileged local user to cause a system crash or other undefined behaviors.

A flaw in the KVM's Intel nested virtualization feature (nVMX). In rare circumstances (i.e., kvm_intel module loaded with parameters nested=1 and ept=0) this could allow a malicious guest to crash the host system, causing a denial of service.

A memory leak in the Stream Control Transmission Protocol. This issue may occur when a user starts a malicious networking service and someone connects to this service. This could allow a local user to starve resources, causing a denial of service.

A NULL pointer dereference in the gfs2 file system. This flaw allows a privileged local user to cause a kernel panic.

A use-after-free in the network scheduler due to a race problem. This flaw leads to a denial of service issue.

A NULL pointer dereference in traffic control. This issue may allow a local unprivileged user to trigger a system crash or leaked internal kernel information.

A NULL pointer dereference in the netfilter subsystem. This flaw allows a local, unprivileged user to crash the system, resulting in a denial of service.

An out-of-bounds memory access flaw in the relayfs. This flaw allows a local attacker to crash the system or leak kernel internal information.

A use-after-free flaw in vc_screen. This flaw allows an attacker with local user access to cause a system crash or leak internal kernel information.

A flaw in the TC flower classifier (cls_flower) in the Networking subsystem. This issue occurs when sending two TCA_FLOWER_KEY_ENC_OPTS_GENEVE packets with a total size of 252 bytes, which results in an out-of-bounds write, potentially leading to a denial of service or privilege escalation.

An out-of-bounds memory write flaw in the Traffic Control (QoS) subsystem. This flaw allows a local user to crash or potentially escalate their privileges on the system.

A flaw in the IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to cause kernel crash and denial of service.

A use-after-free vulnerability in a network scheduler sub-component. This may allow a local attacker to gain local privilege escalation.

A double-free flaw in the Network Scheduler component. This flaw allows a local attacker to use a failure event to mishandle the reference counter, leading to a local privilege escalation threat.

A NULL pointer dereference in the UDF file system functionality. This flaw allows a local user to crash the system.

A use-after-free flaw in the IGMP protocol. This flaw allows a local user to crash or potentially escalate their privileges on the system.