Or Cohen

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.12.4 **Description** The issue is related to a Use After Free vulnerability in the NFC sockets of the Linux kernel. This vulnerability can be exploited by a local attacker to elevate their privileges. In typical configurations, the issue can only be triggered by a privileged local user with the CAP NET RAW capability. The vulnerability is associated with the use of memory after it has been freed. **Recommendations** For Linux kernel versions prior to 5.12.4, update to version 5.12.4 or later to resolve the issue. As a temporary workaround, consider restricting the use of NFC sockets or disabling the CAP NET RAW capability for non-privileged users until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.12-rc8 **Description** A race condition in the Linux kernel's SCTP sockets can lead to kernel privilege escalation. This issue arises when `sctp destroy sock` is called without proper locking, allowing an element to be removed from the `auto asconf splist` list. An attacker with network service privileges can exploit this to escalate to root, or an unprivileged user can exploit it directly if a `BPF CGROUP INET SOCK CREATE` is attached, which denies the creation of some SCTP sockets. **Recommendations** For Linux kernel versions prior to 5.12-rc8, update to version 5.12-rc8 or later to resolve the issue. As a temporary workaround, consider restricting the use of SCTP sockets or disabling the `sctp destroy sock` function until a patch is available. Additionally, avoid using `BPF CGROUP INET SOCK CREATE` to deny the creation of SCTP sockets until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.9-rc4 **Description** A flaw in the Linux kernel allows memory corruption to be exploited, potentially granting root privileges to unprivileged processes. This poses a significant threat to data confidentiality and integrity. The vulnerability is related to the AF PACKET socket implementation and can be exploited by a local unprivileged user to execute code with root privileges or escape from isolated containers if root access is available. **Recommendations** For Linux kernel versions prior to 5.9-rc4, update to a version 5.9-rc4 or later to resolve the issue. As a temporary workaround, consider restricting access to the AF PACKET socket implementation to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions through 5.3.13 **Description** The issue is related to the `vcs write` function in the Linux kernel, specifically in the `drivers/tty/vt/vc screen.c` file. It involves a buffer overflow in memory, which could allow an attacker to elevate their privileges. The problem is that `vcs write` does not prevent write access to `vcsu` devices. **Recommendations** For Linux kernel versions through 5.3.13, consider restricting access to the `vcsu` devices as a temporary workaround until a patch is available. Additionally, monitor for any updates from the Linux kernel community that may address this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.