Jeff Mahoney

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue arises from dereferencing the openat2 syscall argument in `audit match perm()` to obtain the `open how::flags`, which can result in an oops/page-fault. This is resolved by using the `open how` struct stored in the `audit context` with `audit openat2 how()`. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 2.6.36-rc4 **Description** The issue is related to the `tcf act police dump` function in the network queueing functionality, which does not properly initialize certain structure members. This allows local users to obtain potentially sensitive information from kernel memory via vectors involving a dump operation. **Recommendations** For Linux kernel versions prior to 2.6.36-rc4, update to version 2.6.36-rc4 or later to resolve the issue.