ROS-20230915-10

A vulnerability in the Linux kernel memory management system is related to the lack of randomization of the exception handling stacks.
of the exception handling stack. Exploitation of the vulnerability could allow an attacker to gain
unauthorized access to protected information.

Vulnerability of ALSA:pcm component (sound subsystem) of Linux kernel is related to
synchronization failure in snd_ctl_elem_read_user. Exploitation of the vulnerability could allow an attacker to
to cause a denial of service and gain unauthorized access to protected information.

A vulnerability in the table_clear() function in the drivers/md/dm-ioctl.c module of the device-mapper driver in the kernel of the
Linux kernel device-mapper driver is related to recursive locking. Exploitation of the vulnerability could allow an attacker
to cause a denial of service.

A vulnerability in the __do_proc_dointvec function of the __do_proc_dointvec function of the Linux operating system kernel is related to the use of the function with
inconsistent implementations. Exploitation of the vulnerability could allow an attacker to cause a denial of service or escalate privileges.
denial of service or escalate privileges.

Vulnerability of the tcf_exts_exec() function of the tcindex traffic control indexing filter of kernel
of Linux operating systems is related to memory usage after its release when processing the parameter
tcf_ext. Exploitation of the vulnerability may allow an attacker to escalate his privileges.

A vulnerability in the gfs2_evict_inode() function in the fs/gfs2/super.c module of the Linux kernel is related to
dereferencing a null pointer in the Linux kernel. Exploitation of the vulnerability could allow an attacker to cause a denial of
denial of service.

Vulnerability of stat() function of OverlayFS subsystem of Linux operating system kernel is related to the flaws of
access differentiation when processing setuid and setgid attributes. Exploitation of the vulnerability could allow
an attacker to escalate their privileges.