Qingyu Li

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A vulnerability has been resolved in the Linux kernel related to the TCP QUEUE SEQ option. The issue was reported by Qingyu Li, who found a syzkaller bug that changes the RCV SEQ after restoring data in the receive queue. This should not be allowed, as TCP QUEUE SEQ should only be used when queues are empty. The patch fixes this case and the tx path as well. The vulnerability can be exploited locally, allowing an attacker to gain elevated privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.