Willsroot

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified) Description: A flaw exists in the Linux kernel's net/sched subsystem related to the handling of netem (network emulator) queuing disciplines (qdiscs). The duplication prevention logic within `netem enqueue` fails when a netem instance resides within a qdisc tree alongside other netem instances. This can lead to a soft lockup and an out-of-memory (OOM) loop during `netem dequeue`. The issue arises from the potential for duplicated netem instances to exist within the same qdisc tree. Previous attempts to address this included tracking duplication status in the `sk buff` structure, restricting recursion depth, and using metadata in `netem skb cb`, but these were deemed either too specific, bypassable, or overly complex. The current solution prevents a duplicating netem from existing in the same tree as other netems. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux Kernel (affected versions not specified) **Description** A flaw named "EntryBleed" was found in the Linux Kernel Page Table Isolation (KPTI). This issue could allow a local attacker to leak KASLR base via prefetch side-channels based on TLB timing for Intel systems. The vulnerability is related to the lack of protection for service data, which can be exploited to obtain the Kernel ASLR base address and gain access to kernel memory. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux Kernel versions 5.1 through 5.15.1 Linux Kernel versions prior to 5.16.2 Linux Kernel versions prior to 5.15.16 Linux Kernel versions prior to 5.10.93 Linux Kernel versions prior to 5.4.173 **Description** A heap-based buffer overflow flaw was found in the way the legacy parse param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length. An unprivileged local user able to open a filesystem that does not support the Filesystem Context API could use this flaw to escalate their privileges on the system. The vulnerability allows a local attacker to cause a denial of service or execute arbitrary code. It can also be used to escape Kubernetes containers. **Recommendations** For Linux Kernel versions 5.1 through 5.15.1, update to version 5.16.2 or later. For Linux Kernel versions prior to 5.15.16, update to version 5.15.16 or later. For Linux Kernel versions prior to 5.10.93, update to version 5.10.93 or later. For Linux Kernel versions prior to 5.4.173, update to version 5.4.173 or later. As a temporary workaround, consider setting the sysctl "user.max user namespaces" to 0 to prevent exploitation.