Jann

**Name of the Vulnerable Software and Affected Versions** The product name cannot be determined (affected versions not specified) **Description** Memory corruption occurs when processing display command line information. This issue is caused by the improper initialization of a variable. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A possible issue was reported in the Linux kernel when the trampoline check ip returns an address near the bottom of the address space that is allowed to call into the syscall if uretprobes are not set up. The mmap minimum address restrictions will typically prevent creating mappings in this area, but the uretprobe syscall checks have been hardened to ensure this does not occur. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.17-rc8 **Description** An out-of-bounds (OOB) memory write flaw exists in the `watch queue` event notification subsystem of the Linux kernel. This issue allows a local user to overwrite parts of the kernel state, which could lead to gaining privileged access (root privileges) or causing a system denial of service. Technical exploitation may involve creating a page-level use-after-free (UAF) to overwrite the `struct file` for local privilege escalation. **Recommendations** Update the kernel to version 5.17-rc8.