N4Ke4Mry

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a kernel address leakage in the Linux kernel's bpf component, specifically in the atomic fetch functionality. This leakage can allow unprivileged users to leak kernel pointers, potentially leading to a denial of service. The vulnerability arises from a bug in the check mem access() handling, which can be exploited by an atomic fetch/and operation with -1 on a stack destination holding a spilled pointer. This can migrate the spilled register type into a scalar, allowing it to be exported out of the program by dumping it into a map value. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.