Minh Yuan

**Name of the Vulnerable Software and Affected Versions** Linux Kernel (affected versions not specified) **Description** The issue is caused by a concurrency use-after-free flaw in the `bad flp intr` function, allowing a local attacker to execute arbitrary code on the system or cause a denial of service condition. This can be achieved by executing a specially-crafted program. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A use-after-free issue was found in the `drm lease held` function in `drivers/gpu/drm/drm lease.c` due to a race problem, allowing a local user privilege attacker to cause a denial of service (DoS) or a kernel information leak. This flaw can be exploited by a specially crafted program to disclose protected information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.9.7 **Description** The issue is related to a slab-out-of-bounds read in the fbcon component of the Linux kernel. This occurs because the `KD FONT OP COPY` function in `drivers/tty/vt/vt.c` can be used for manipulations such as font height, allowing local attackers to read privileged information or potentially crash the kernel. **Recommendations** For Linux kernel versions prior to 5.9.7, update to version 5.9.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the `KD FONT OP COPY` function in `drivers/tty/vt/vt.c` to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.9-rc6 Description: A flaw in the Linux kernel can cause an out-of-bounds memory write when changing screen size, leading to memory corruption or a denial of service. The primary threat of this issue is system availability. Due to the nature of the flaw, privilege escalation cannot be fully ruled out. The vulnerability is related to the `fbcon redraw softback` function and involves a buffer overflow, which can be exploited to cause a denial of service. Recommendations: For Linux kernel versions prior to 5.9-rc6, update to version 5.9-rc6 or later to resolve the issue. As a temporary workaround, consider restricting screen size changes to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to the use of memory after it has been freed in the `vgem gem dumb create` function of the Linux kernel. This can be exploited to allow an attacker to execute arbitrary code. The root cause is that the `ioctl$DRM IOCTL MODE DESTROY DUMB` can decrease the refcount of `drm vgem gem object` (created in `vgem gem dumb create`) concurrently, and `vgem gem dumb create` will access the freed `drm vgem gem object`. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.