Mao Wenan

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.4.195 **Description** The issue is related to a NULL pointer dereference in the `rds tcp kill sock()` function, which can cause denial of service. This can be exploited by a remote attacker to disrupt service. **Recommendations** For Linux kernel versions prior to 4.4.195, update to version 4.4.195 or later to resolve the issue. As a temporary workaround, consider restricting access to the `rds tcp kill sock()` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.0 **Description** A memory leak exists in the `sit init net()` function in `net/ipv6/sit.c` when `register netdev()` fails to register `sitn->fb tunnel dev`. This issue may cause denial of service. The vulnerability is related to a resource not being released after its expiration, which can be exploited by a remote attacker to cause a denial of service. **Recommendations** For Linux kernel versions prior to 5.0, update to version 5.0 or later to resolve the issue. At the moment, there is no information about additional mitigation measures for this vulnerability.