Pi3

**Name of the Vulnerable Software and Affected Versions** Intel(R) i915 Graphics drivers for linux versions prior to kernel version 6.2.10 **Description** The issue is related to improper restriction of operations within the bounds of a memory buffer in some Intel(R) i915 Graphics drivers for linux. This may allow an authenticated user to potentially enable escalation of privilege via local access. The vulnerability is associated with access to memory beyond the allocated buffer, which can be exploited to impact the confidentiality, integrity, and availability of data or to elevate privileges. **Recommendations** For Intel(R) i915 Graphics drivers for linux versions prior to kernel version 6.2.10, update to kernel version 6.2.10 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.10-rc1 **Description** A use-after-free flaw was found in kernel/trace/ring buffer.c, which could cause a denial of service problem due to a race condition in trace open and resize of cpu buffer running in parallel on different CPUs. This issue may also allow a local attacker with special user privileges to leak kernel information. **Recommendations** For Linux kernel versions prior to 5.10-rc1, update to version 5.10-rc1 or later to resolve the issue. As a temporary workaround, consider restricting access to the kernel/trace/ring buffer.c component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.6.5 **Description** A signal access-control issue was discovered in the Linux kernel. The issue is caused by an integer overflow in the `exec id` variable in `include/linux/sched.h`, which can interfere with a protection mechanism. This allows a child process to send an arbitrary signal to a parent process in a different security domain. The exploitation of this issue is limited by the time it takes for an integer overflow to occur and the lack of scenarios where signals to a parent process pose a significant threat. **Recommendations** For Linux kernel versions prior to 5.6.5, update to version 5.6.5 or later to resolve the issue. As a temporary workaround, consider restricting signal handling between parent and child processes to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** The product name cannot be determined. **Description** A denial-of-service issue allows attackers to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.