Lyu Tao

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.16.5 **Description** An issue was discovered in the Linux kernel, which is related to a memory leak in the `yam siocdevprivate` function in `drivers/net/hamradio/yam.c`. This issue can be exploited to cause a denial of service. Additionally, there is an error in memory release in the `drivers/usb/gadget/legacy/inode.c` component, which can also lead to a denial of service. **Recommendations** For Linux kernel versions prior to 5.16.5, update to version 5.16.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the `yam siocdevprivate` function in `drivers/net/hamradio/yam.c` and the `inode.c` component in `drivers/usb/gadget/legacy` to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.16.5 **Description** An issue was discovered in the Linux kernel where the nfs atomic open() function performs a regular lookup when an application sets the O DIRECTORY flag and tries to open a regular file. Instead of returning an ENOTDIR error, the server returns uninitialized data in the file descriptor. This issue is related to the lack of resource initialization in the nfs atomic open() function implementation, which could allow an attacker to impact data confidentiality. **Recommendations** For Linux kernel versions prior to 5.16.5, update to version 5.16.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the nfs atomic open() function to minimize the risk of exploitation. Avoid using the O DIRECTORY flag when trying to open regular files until the issue is resolved.