ROS-20220908-01

A vulnerability in the netfilter subsystem of the Linux kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability could allow an attacker to escalate privileges and execute arbitrary code

A vulnerability in the Linux kernel is related to the fact that when called from a non-leading thread, the timer structure remains in the list despite clearing the memory allocated for storage. Exploitation of the vulnerability could allow an attacker to crash or potentially escalate their privileges on the system

A vulnerability in the nft_set_elem_init function of the net/netfilter/nf_tables_api.c file of the User Namespace Handler component of the Linux operating system kernel is caused by a buffer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to gain root access

A vulnerability in the route4_change function (net/sched/cls_route.c) of the Linux kernel is associated with resource management errors. Exploitation of the vulnerability could allow an attacker to crash an application or execute arbitrary code

A vulnerability in the Linux operating system kernel is related to writing outside buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to execute arbitrary code using the ioctl FBIOPUT_VSCREENINFO system call.

A vulnerability in the nft_set_desc_concat_parse() function of the Linux operating system kernel is related to buffer copying without checking the size of the input data. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service or execute arbitrary code