Martin Schwidefsky

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 3.15.8 **Description** The issue allows local users to obtain read and write access to kernel memory locations, and consequently gain privileges, via a crafted application that makes a ptrace system call. This is due to the Linux kernel not properly restricting address-space control operations in PTRACE POKEUSR AREA requests on the s390 platform. **Recommendations** For Linux kernel versions prior to 3.15.8, update to version 3.15.8 or later to resolve the issue. As a temporary workaround, consider restricting the use of ptrace system calls to minimize the risk of exploitation.